# Best Vendor Security and Privacy Assessment Software for Small Business *By [Brandon Summers-Miller](https://research.g2.com/insights/author/brandon-summers-miller)* Products classified in the overall Vendor Security and Privacy Assessment category are similar in many regards and help companies of all sizes solve their business problems. However, small business features, pricing, setup, and installation differ from businesses of other sizes, which is why we match buyers to the right Small Business Vendor Security and Privacy Assessment to fit their needs. Compare product ratings based on reviews from enterprise users or connect with one of G2's buying advisors to find the right solutions within the Small Business Vendor Security and Privacy Assessment category. In addition to qualifying for inclusion in the Vendor Security and Privacy Assessment Software category, to qualify for inclusion in the Small Business Vendor Security and Privacy Assessment Software category, a product must have at least 10 reviews left by a reviewer from a small business. ## Category Overview **Total Products under this Category:** 126 ## Trust & Credibility Stats **Why You Can Trust G2's Software Rankings:** - 30 Analysts and Data Experts - 15,000+ Authentic Reviews - 126+ Products - Unbiased Rankings G2's software rankings are built on verified user reviews, rigorous moderation, and a consistent research methodology maintained by a team of analysts and data experts. Each product is measured using the same transparent criteria, with no paid placement or vendor influence. While reviews reflect real user experiences, which can be subjective, they offer valuable insight into how software performs in the hands of professionals. Together, these inputs power the G2 Score, a standardized way to compare tools within every category. --- **Sponsored** ### Perimeter Painless end-to-end VRM: Perimeter covers the full VRM lifecycle for your entire vendor universe while cutting manual effort more than 80%. Unlimited scalability: Perimeter makes it easy to scale your VRM program to any number of vendors without hiring dozens of new roles. Fully customizable and branded for your organization: All assessments, logic, design, and language is fully customizable to your needs, processes, and brand. Bi-directional APIs and pre-configured templates: Works straight out of the box with pre-built templates while enabling the flexibility to easily customize assessments, workflows and processes to accommodate nuanced risk management as needed. Secure document sharing and storage: Perimeter makes scaling VRM easy with secure, centralized document management. Data hosted according to regulatory requirements. Onboarding, training, and support are all included in the price. Built to Eliminate the Pain
of Vendor Risk Management. Our Mission Is Simple: deliver painless, real-time vendor risk management through one integrated platform - from onboarding to assessment to continuous monitoring. We give teams the tools they need to automate assessments, validate vendor responses, continuously monitor their attack surfaces, and respond to issues before they escalate - all without adding headcount, complexity, or overhead. We were founded to fix the inefficiencies and blind spots plaguing traditional VRM programs - programs that are too slow to scale, too manual to trust, and too fragmented to protect against real-world threats. Fully integrated assessment, continuous monitoring and AI data extraction platform. Don’t just trust vendor attestations - validate them in real time. Up and running in under a week - no implementation partner needed. Cut manual work by 80% - and still improve your coverage. Easily customizable assessments, workflows and processes to accommodate nuanced risk management needs. See vendor risk as it happens - including early breach notifications. AI with guardrails - built for risk professionals. Built for Speed, Scale, and Simplicity. [Visit website](https://www.g2.com/external_clickthroughs/record?secure%5Bad_program%5D=ppc&secure%5Bad_slot%5D=category_product_list&secure%5Bcategory_id%5D=2445&secure%5Bdisplayable_resource_id%5D=2445&secure%5Bdisplayable_resource_type%5D=Category&secure%5Bmedium%5D=sponsored&secure%5Bplacement_reason%5D=page_category&secure%5Bplacement_resource_ids%5D%5B%5D=2445&secure%5Bprioritized%5D=false&secure%5Bproduct_id%5D=73524&secure%5Bresource_id%5D=2445&secure%5Bresource_type%5D=Category&secure%5Bsource_type%5D=category_page&secure%5Bsource_url%5D=https%3A%2F%2Fwww.g2.com%2Fcategories%2Fvendor-security-and-privacy-assessment&secure%5Btoken%5D=2adc02dcb7398a92db5756729973fbb462c8da623943573be59327342ec14511&secure%5Burl%5D=https%3A%2F%2Fperimeter.net%2Fwho-we-help%2F%3Futm_source%3DG2%26utm_medium%3Dplacements%26utm_campaign%3DVendor%2BSecurity%2Band%2BPrivacy%2BAssessment&secure%5Burl_type%5D=custom_url) --- ## Top-Rated Products (Ranked by G2 Score) ### 1. [Vanta](https://www.g2.com/products/vanta/reviews) Vanta is the leading Agentic Trust Platform helping 15k+ companies—like Atlassian, Duolingo, Golden State Warriors, and Icelandair—start and scale their security programs and build trust with buyers. Vanta saves security teams time and improves program visibility by automating 35+ compliance frameworks, such as SOC 2 and ISO 27001, and GRC workflows, like risk management. **Average Rating:** 4.6/5.0 **Total Reviews:** 2,403 **User Satisfaction Scores:** - **Ease of Admin:** 8.9/10 (Category avg: 9.0/10) - **Risk Scoring:** 8.6/10 (Category avg: 8.8/10) - **Questionnaire Templates:** 8.4/10 (Category avg: 8.6/10) - **4th Party Assessments:** 7.7/10 (Category avg: 7.9/10) **Seller Details:** - **Seller:** [Vanta](https://www.g2.com/sellers/vanta) - **Company Website:** https://www.vanta.com/ - **Year Founded:** 2018 - **HQ Location:** San Francisco, California - **Twitter:** @TrustVanta (4,634 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/vanta-security/ (1,624 employees on LinkedIn®) **Reviewer Demographics:** - **Who Uses This:** CTO, CEO - **Top Industries:** Computer Software, Information Technology and Services - **Company Size:** 56% Small-Business, 38% Mid-Market #### Pros & Cons **Pros:** - Ease of Use (796 reviews) - Compliance (605 reviews) - Integrations (463 reviews) - Automation (455 reviews) - Time-saving (445 reviews) **Cons:** - Integration Issues (206 reviews) - Pricing Issues (178 reviews) - Expensive (173 reviews) - Limited Integrations (171 reviews) - Missing Features (164 reviews) ### 2. [Sprinto](https://www.g2.com/products/sprinto-inc/reviews) Sprinto is the world's first Autonomous Trust Platform, detecting change across your posture, determining what's at risk, and acting across compliance, vendor risk, AI governance, and more, so your organization stays trustworthy without the operational chaos. Sprinto is trusted by 3,000+ companies across 75 countries, including Emergent, CodeRabbit, Anaconda, and Whatfix. The platform supports 200+ global standards, including SOC 2, ISO 27001, GDPR, HIPAA, PCI-DSS, and ISO 42001, for AI governance across 300+ integrations. **Average Rating:** 4.8/5.0 **Total Reviews:** 1,619 **User Satisfaction Scores:** - **Ease of Admin:** 9.3/10 (Category avg: 9.0/10) - **Risk Scoring:** 9.6/10 (Category avg: 8.8/10) - **Questionnaire Templates:** 9.4/10 (Category avg: 8.6/10) - **4th Party Assessments:** 8.9/10 (Category avg: 7.9/10) **Seller Details:** - **Seller:** [Sprinto Technology Private Limited](https://www.g2.com/sellers/sprinto-technology-private-limited) - **Company Website:** https://sprinto.com/ - **Year Founded:** 2020 - **HQ Location:** San Francisco, US - **Twitter:** @sprintoHQ (13,298 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/sprinto-com (460 employees on LinkedIn®) **Reviewer Demographics:** - **Who Uses This:** CTO, CEO - **Top Industries:** Computer Software, Information Technology and Services - **Company Size:** 56% Small-Business, 42% Mid-Market #### Pros & Cons **Pros:** - Ease of Use (418 reviews) - Customer Support (346 reviews) - Compliance (324 reviews) - Helpful (320 reviews) - Compliance Management (275 reviews) **Cons:** - Integration Issues (74 reviews) - Limited Integrations (42 reviews) - Limited Customization (41 reviews) - Unclear Guidance (41 reviews) - Software Bugs (40 reviews) ### 3. [Secureframe](https://www.g2.com/products/secureframe/reviews) Secureframe empowers businesses to build trust with customers by simplifying information security and compliance through AI and automation. Thousands of organizations such as AngelList, Nasdaq, Coda, and Remote trust Secureframe to help them obtain and maintain compliance with global information security standards. **Average Rating:** 4.7/5.0 **Total Reviews:** 794 **User Satisfaction Scores:** - **Ease of Admin:** 9.0/10 (Category avg: 9.0/10) - **Risk Scoring:** 9.1/10 (Category avg: 8.8/10) - **Questionnaire Templates:** 8.7/10 (Category avg: 8.6/10) - **4th Party Assessments:** 8.0/10 (Category avg: 7.9/10) **Seller Details:** - **Seller:** [Secureframe](https://www.g2.com/sellers/secureframe) - **Company Website:** https://secureframe.com/ - **Year Founded:** 2020 - **HQ Location:** San Francisco, US - **Twitter:** @secureframe (2,234 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/secureframe/ (125 employees on LinkedIn®) **Reviewer Demographics:** - **Who Uses This:** CEO, CTO - **Top Industries:** Computer Software, Information Technology and Services - **Company Size:** 66% Small-Business, 30% Mid-Market #### Pros & Cons **Pros:** - Ease of Use (663 reviews) - Compliance (560 reviews) - Automation (422 reviews) - Security (406 reviews) - Integrations (390 reviews) **Cons:** - Integration Issues (188 reviews) - Limited Integrations (145 reviews) - Limited Customization (141 reviews) - Improvements Needed (110 reviews) - Missing Features (109 reviews) ### 4. [Drata](https://www.g2.com/products/drata/reviews) Drata is a security and compliance automation platform that continuously monitors and collects evidence of a company's security controls, while streamlining compliance workflows end-to-end to ensure audit readiness. Drata helps thousands of companies streamline their compliance efforts through continuous, automated control monitoring and evidence collection, resulting in lower costs and time spent preparing for annual audits and better overall security posture. Drata's supported frameworks include: SOC 2, ISO 27001, HIPAA, GDPR, PCI DSS, CCPA, CCM, CMMC, ISO 27701, ISO 27017, ISO 27018, Cyber Essentials, Microsoft SSPA, NIST 800-53, NIST CSF, NIST AI, FFIEC, NIST 800-171, and Custom Frameworks. Drata is backed by ICONIQ Growth, GGV Capital, SVCI (Silicon Valley CISO Investments), Okta Ventures, Salesforce Ventures, Cowboy Ventures, Leaders Fund, SV Angel, and many key industry leaders. **Average Rating:** 4.7/5.0 **Total Reviews:** 1,148 **User Satisfaction Scores:** - **Ease of Admin:** 9.2/10 (Category avg: 9.0/10) - **Risk Scoring:** 8.8/10 (Category avg: 8.8/10) - **Questionnaire Templates:** 8.6/10 (Category avg: 8.6/10) - **4th Party Assessments:** 8.1/10 (Category avg: 7.9/10) **Seller Details:** - **Seller:** [Drata](https://www.g2.com/sellers/drata) - **Company Website:** https://drata.com/ - **Year Founded:** 2020 - **HQ Location:** San Diego, US - **Twitter:** @DrataHQ (1,507 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/drata/ (690 employees on LinkedIn®) **Reviewer Demographics:** - **Who Uses This:** CTO, CEO - **Top Industries:** Computer Software, Information Technology and Services - **Company Size:** 52% Small-Business, 43% Mid-Market #### Pros & Cons **Pros:** - Customer Support (161 reviews) - Ease of Use (148 reviews) - Compliance (130 reviews) - Time-saving (106 reviews) - Integrations (103 reviews) **Cons:** - Limited Integrations (47 reviews) - Improvements Needed (42 reviews) - Integration Issues (41 reviews) - Lack of Clarity (31 reviews) - Missing Features (24 reviews) ### 5. [Scrut Automation](https://www.g2.com/products/scrut-automation/reviews) Scrut Automation is a leading compliance automation platform designed for fast-growing businesses looking to streamline security, risk, and compliance without disrupting operations. It centralizes compliance functions, automates evidence collection, and simplifies audits, helping security teams reduce compliance efforts by up to 80%. Scrut supports 60+ out-of-the-box frameworks, including SOC 2, ISO 27001, GDPR, HIPAA, and PCI-DSS, with the flexibility to add custom frameworks for unique regulatory needs. With 100+ integrations, Scrut seamlessly integrates into your security and IT ecosystem, automating compliance, eliminating manual work, and improving risk visibility. Join 1700+ industry leaders who trust Scrut for simplified compliance and risk management. Schedule a demo today. **Average Rating:** 4.9/5.0 **Total Reviews:** 1,298 **User Satisfaction Scores:** - **Ease of Admin:** 9.6/10 (Category avg: 9.0/10) - **Risk Scoring:** 9.2/10 (Category avg: 8.8/10) - **Questionnaire Templates:** 9.2/10 (Category avg: 8.6/10) - **4th Party Assessments:** 8.7/10 (Category avg: 7.9/10) **Seller Details:** - **Seller:** [Scrut Automation](https://www.g2.com/sellers/scrut-automation) - **Company Website:** https://www.scrut.io/ - **Year Founded:** 2022 - **HQ Location:** Palo Alto, US - **Twitter:** @scrutsocial (121 Twitter followers) - **LinkedIn® Page:** https://in.linkedin.com/company/scrut-automation (230 employees on LinkedIn®) **Reviewer Demographics:** - **Who Uses This:** CTO, CEO - **Top Industries:** Computer Software, Information Technology and Services - **Company Size:** 50% Small-Business, 48% Mid-Market #### Pros & Cons **Pros:** - Ease of Use (276 reviews) - Customer Support (249 reviews) - Compliance Management (225 reviews) - Helpful (216 reviews) - Compliance (190 reviews) **Cons:** - Improvement Needed (69 reviews) - Technical Issues (52 reviews) - Missing Features (44 reviews) - UX Improvement (44 reviews) - Learning Curve (41 reviews) ### 6. [Thoropass](https://www.g2.com/products/thoropass/reviews) Thoropass is a modern compliance audit firm that helps organizations of all sizes build and prove trust with high-quality audits, expert guidance, and integrated security services. Combining deep auditor expertise with intuitive technology, Thoropass delivers a streamlined path to achieving and maintaining compliance with frameworks including SOC 1, SOC 2, ISO 27001, ISO 42001, HIPAA, HITRUST, GDPR, CMMC, Cyber Essentials, PCI DSS, and others. As a licensed CPA firm and CREST-accredited provider, Thoropass brings a level of credibility and rigor that scales from fast-growing startups to complex, regulated enterprises. Our auditors, security engineers, and compliance experts partner closely with customers to simplify evidence collection, reduce audit friction, and ensure results that stand up to regulator, partner, and customer scrutiny. Beyond audits, Thoropass supports the full trust-building lifecycle with penetration testing, risk assessment, access reviews, AI governance assessments, and questionnaire automation—helping teams unify compliance operations without relying on multiple vendors. Organizations choose Thoropass for our responsive expert support, consistent audit outcomes, and a service experience built for modern security and compliance teams. Thoropass is trusted by thousands of companies to prove compliance, strengthen security posture, and confidently meet the expectations of customers, auditors, and regulators. **Average Rating:** 4.7/5.0 **Total Reviews:** 576 **User Satisfaction Scores:** - **Ease of Admin:** 9.0/10 (Category avg: 9.0/10) - **Risk Scoring:** 8.8/10 (Category avg: 8.8/10) - **Questionnaire Templates:** 8.5/10 (Category avg: 8.6/10) - **4th Party Assessments:** 7.8/10 (Category avg: 7.9/10) **Seller Details:** - **Seller:** [Thoropass](https://www.g2.com/sellers/thoropass) - **Company Website:** https://thoropass.com/?utm_source=adwords&utm_medium=ppc&utm_campaign=Brand+NA&utm_term=b_thoropass - **Year Founded:** 2019 - **HQ Location:** New York - **Twitter:** @thoropass (380 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/thoropass/ (232 employees on LinkedIn®) **Reviewer Demographics:** - **Who Uses This:** CEO, CTO - **Top Industries:** Computer Software, Information Technology and Services - **Company Size:** 70% Small-Business, 26% Mid-Market #### Pros & Cons **Pros:** - Ease of Use (115 reviews) - Helpful (108 reviews) - Customer Support (89 reviews) - Compliance (70 reviews) - Team Helpfulness (54 reviews) **Cons:** - Lack of Clarity (18 reviews) - Integration Issues (17 reviews) - Audit Issues (15 reviews) - Improvements Needed (14 reviews) - Limited Integrations (14 reviews) ### 7. [IBM OpenPages](https://www.g2.com/products/ibm-openpages/reviews) OpenPages is an AI-powered, easy-to-use, and highly scalable GRC management solution that runs on any cloud and centralizes siloed risk management functions into a single environment. OpenPages lays emphasis upon ‘GRC is Everyone’s Business’ strategy by establishing a risk and compliance culture that promotes inclusiveness, consistency and transparency Easy-to-use, highly configurable and requires little/no training Saves time - Users are guided by an AI powered virtual assistant giving real-time answers to users. Improves data quality - AI suggested classifications help users reduce errors, mitigate risks and promote accuracy and efficiency in incident reporting and risk mitigation efforts. Reduces the knowledge gap - Users are guided by AI in the interface for areas like risk and compliance taxonomies. **Average Rating:** 4.2/5.0 **Total Reviews:** 66 **User Satisfaction Scores:** - **Ease of Admin:** 7.3/10 (Category avg: 9.0/10) - **Risk Scoring:** 9.8/10 (Category avg: 8.8/10) - **Questionnaire Templates:** 9.8/10 (Category avg: 8.6/10) - **4th Party Assessments:** 9.8/10 (Category avg: 7.9/10) **Seller Details:** - **Seller:** [IBM](https://www.g2.com/sellers/ibm) - **Year Founded:** 1911 - **HQ Location:** Armonk, NY - **Twitter:** @IBM (709,298 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/1009/ (324,553 employees on LinkedIn®) - **Ownership:** SWX:IBM **Reviewer Demographics:** - **Top Industries:** Banking, Information Technology and Services - **Company Size:** 39% Mid-Market, 34% Enterprise #### Pros & Cons **Pros:** - Risk Management (12 reviews) - Time-saving (9 reviews) - Automation (7 reviews) - Ease of Use (7 reviews) - Security (7 reviews) **Cons:** - Complexity (3 reviews) - Expensive (3 reviews) - Improvement Needed (3 reviews) - Learning Curve (3 reviews) - Learning Difficulty (3 reviews) ### 8. [Scytale](https://www.g2.com/products/scytale-g2/reviews) Scytale is the only AI GRC platform and human experts that drive real compliance outcomes - from getting compliant to staying compliant, and building trust across every framework. Trusted by 1,000+ companies worldwide, Scytale replaces fragmented testing with continuous control visibility, automating evidence, control cross-mapping, and risk management across 80+ security, privacy, and AI frameworks, including SOC 2, ISO 27001, GDPR, SOX ITGC, ISO 42001, and many more. Scytale is a full-scope trust and compliance platform with everything you need to run your GRC program in one central hub, including: an agentic GRC network, a Trust Center, AI-integrated offensive security and expert GRC services. **Average Rating:** 4.8/5.0 **Total Reviews:** 594 **User Satisfaction Scores:** - **Ease of Admin:** 9.2/10 (Category avg: 9.0/10) - **Risk Scoring:** 9.1/10 (Category avg: 8.8/10) - **Questionnaire Templates:** 8.9/10 (Category avg: 8.6/10) - **4th Party Assessments:** 8.0/10 (Category avg: 7.9/10) **Seller Details:** - **Seller:** [Scytale AI](https://www.g2.com/sellers/scytale-ai) - **Company Website:** https://scytale.ai/ - **Year Founded:** 2021 - **HQ Location:** New York, US - **Twitter:** @scytale_ai (76 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/scytale-ai/ (145 employees on LinkedIn®) **Reviewer Demographics:** - **Who Uses This:** CTO, CEO - **Top Industries:** Computer Software, Information Technology and Services - **Company Size:** 71% Small-Business, 22% Mid-Market #### Pros & Cons **Pros:** - Helpful (162 reviews) - Ease of Use (148 reviews) - Compliance (102 reviews) - Customer Support (94 reviews) - Team Helpfulness (85 reviews) **Cons:** - Integration Issues (45 reviews) - Limited Integrations (35 reviews) - Evidence Collection (23 reviews) - Missing Features (22 reviews) - Software Bugs (19 reviews) ### 9. [Vendor Risk](https://www.g2.com/products/vendor-risk/reviews) UpGuard Vendor Risk is an AI-powered third-party cyber risk management (TPCRM) solution that empowers security teams to eliminate the response gap and take control of their vendor ecosystem. As part of the UpGuard Cyber Risk Posture Management (CRPM) platform, it integrates seamlessly with Breach Risk and User Risk to provide a unified defense against modern cyber threats. As organizations scale, their reliance on third-party vendors expands, creating dangerous blind spots across their supply chain. Traditional assessment methods often rely on point-in-time questionnaires, leaving teams vulnerable to hidden control gaps and unmonitored shifts in a vendor's security posture. Vendor Risk solves this by combining continuous monitoring, AI-powered document analysis, and security questionnaire automation into a single, scalable platform. Key Capabilities: • Continuous Monitoring & Security Ratings: Get a complete picture of your vendor ecosystem. Vendor Risk proactively monitors all your vendors with daily scanning and objective, industry-leading security ratings. Continuous monitoring ensures you are instantly alerted to critical shifts in a vendor's security posture, even between assessments. • AI-Powered Vendor Assessments: Double your assessment speed. UpGuard AI instantly analyzes vendor documentation to uncover control gaps and risks in minutes. It gives you a clear view of which controls are met or failed, the exact risks present, and the actionable remediation steps required—meaning far less evidence chasing. • Security Questionnaire Automation: Move beyond manual spreadsheets. Leverage automation and a complete library of pre-configured questionnaires—including NIST, ISO, SIG, and regional regulations like DORA—to quickly fill any information gaps. Centralized intelligence consolidates vendor communications, cutting manual assessment work by up to 90%. • Reporting & Program Oversight: Scale without limits. Generate accurate, point-in-time risk assessment reports in under a minute using UpGuard AI. With intuitive, one-click reporting, security teams can easily communicate current risks and compliance status to stakeholders like the board or C-Suite. By translating complex third-party risks into objective, quantifiable Security Ratings, UpGuard Vendor Risk enables security leaders to benchmark vendor performance, accelerate onboarding workflows, and confidently prove supply chain risk reduction to the board. **Average Rating:** 4.5/5.0 **Total Reviews:** 700 **User Satisfaction Scores:** - **Ease of Admin:** 9.1/10 (Category avg: 9.0/10) - **Risk Scoring:** 8.8/10 (Category avg: 8.8/10) - **Questionnaire Templates:** 8.6/10 (Category avg: 8.6/10) - **4th Party Assessments:** 7.9/10 (Category avg: 7.9/10) **Seller Details:** - **Seller:** [UpGuard](https://www.g2.com/sellers/upguard) - **Company Website:** https://upguard.com - **Year Founded:** 2012 - **HQ Location:** Mountain View, California - **Twitter:** @UpGuard (8,718 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/upguard/ (322 employees on LinkedIn®) **Reviewer Demographics:** - **Who Uses This:** CISO, Security Analyst - **Top Industries:** Financial Services, Information Technology and Services - **Company Size:** 47% Enterprise, 38% Mid-Market #### Pros & Cons **Pros:** - Ease of Use (267 reviews) - Security (151 reviews) - Risk Management (140 reviews) - Time-saving (111 reviews) - Customer Support (109 reviews) **Cons:** - Lack of Clarity (56 reviews) - Expensive (38 reviews) - Limited Functionality (36 reviews) - Improvement Needed (28 reviews) - Limited Customization (27 reviews) ### 10. [OneTrust Tech Risk & Compliance](https://www.g2.com/products/onetrust-tech-risk-compliance/reviews) OneTrust's Tech Risk & Compliance solution simplifies compliance and effectively manage risks. You can scale your resources and optimize your risk and compliance lifecycle by automating governance with business-ready content, guidance, and mapping. Simplify business collaboration by turning complex regulations into simple, actionable tasks that fit into your existing processes, and ensure continuous compliance. You can also mature your risk program and contextualize risk across the business to monitor over time, educate stakeholders, report to leadership, and prioritize action. Tech Risk and Compliance includes Compliance Automation and IT & Risk Management tools. Compliance Automation scales your resources while optimizing compliance processes to efficiently scope, manage, and communicate your compliance posture, empowering InfoSec and IT Compliance professionals to automate regulatory guidance, reinforce program governance, and maintain audit readiness. With Compliance Automation you can: -Simplify business collaboration to streamline compliance workflows -Deploy pre-built integrations to automate evidence collection -Collect once, comply many with 50+ ready-to-use frameworks IT Risk Management allows you to proactively identify and mitigate risk, streamline data collection, and map risk relationships to assess and quantify risk across your IT and business ecosystem. Identify risk across complex IT ecosystems by discovering information systems vulnerabilities and cybersecurity risks across an inventory of assets, processes, and vendors. Reflect the interconnected nature of how systems, data, and risk flow throughout your business to monitor changes over time. Standardize and quantify risk with context by balancing qualitative and quantitative metrics with a scalable risk methodology that can mature from a standard matrix to automated calculations to inform risk mitigation prioritization without losing critical business context. You can enhance risk ownership across the business through automation of key enterprise risk management activities such as assessments and control management to effectively engage the business, collect information, evaluate impact, and execute remediation strategies.  **Average Rating:** 4.6/5.0 **Total Reviews:** 107 **User Satisfaction Scores:** - **Ease of Admin:** 8.7/10 (Category avg: 9.0/10) - **Risk Scoring:** 8.5/10 (Category avg: 8.8/10) - **Questionnaire Templates:** 8.7/10 (Category avg: 8.6/10) - **4th Party Assessments:** 7.4/10 (Category avg: 7.9/10) **Seller Details:** - **Seller:** [OneTrust](https://www.g2.com/sellers/onetrust) - **Company Website:** https://www.onetrust.com/ - **Year Founded:** 2016 - **HQ Location:** Atlanta, Georgia - **Twitter:** @OneTrust (6,558 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/10795459/ (2,489 employees on LinkedIn®) **Reviewer Demographics:** - **Top Industries:** Computer Software, Information Technology and Services - **Company Size:** 46% Mid-Market, 40% Small-Business #### Pros & Cons **Pros:** - Ease of Use (13 reviews) - Automation (10 reviews) - Compliance Management (9 reviews) - Risk Management (9 reviews) - Features (7 reviews) **Cons:** - Complex Implementation (6 reviews) - Difficult Setup (6 reviews) - Complex Setup (5 reviews) - Learning Curve (5 reviews) - Learning Difficulty (5 reviews) ### 11. [RiskProfiler - External Threat Exposure Management](https://www.g2.com/products/riskprofiler-external-threat-exposure-management/reviews) RiskProfiler is an advanced cybersecurity platform purpose-built for Continuous Threat Exposure Management (CTEM). It unifies external, cloud, vendor, and brand risk intelligence into a single ecosystem—providing organizations with real-time visibility, contextual threat insights, and actionable remediation guidance. Through its integrated suite, External Attack Surface Managemnet, Third\_party Risk Management, Cloud Attack Surface Management, and Brand Risk Protection; the platform continuously discovers, classifies, and evaluates external-facing assets and risks across the internet, multi-cloud environments, and third-party ecosystems. Powered by AI-enabled risk questionnaires, RiskProfiler automates the exchange, validation, and scoring of security assessments, dramatically accelerating third-party due diligence and compliance validation. The platform’s context-enriched graph engine correlates vulnerabilities, exposures, and configurations with real-world threat data, revealing how attackers might exploit an organization’s digital footprint. Its newly enhanced Cyber Threat Intelligence (CTI) module provides live insights into industry-specific attack trends, threat actor profiles, and evolving TTPs, directly embedded within the dashboard. By analyzing CVEs, IOCs, and exploit patterns, it maps these to relevant assets and potential attack paths, enabling focused, prioritized mitigation. From identifying exposed cloud resources across AWS, Azure, and Google Cloud to uncovering brand impersonation, phishing campaigns, or logo abuse, RiskProfiler delivers unified visibility and continuous monitoring that extends beyond the perimeter. It helps organizations anticipate, contextualize, and neutralize threats before they turn into breaches, transforming exposure management into a truly intelligent, predictive defense capability. **Average Rating:** 4.9/5.0 **Total Reviews:** 118 **User Satisfaction Scores:** - **Ease of Admin:** 9.7/10 (Category avg: 9.0/10) - **Risk Scoring:** 9.8/10 (Category avg: 8.8/10) - **Questionnaire Templates:** 9.8/10 (Category avg: 8.6/10) - **4th Party Assessments:** 9.7/10 (Category avg: 7.9/10) **Seller Details:** - **Seller:** [Riskprofiler](https://www.g2.com/sellers/riskprofiler) - **Company Website:** https://riskprofiler.io/ - **Year Founded:** 2019 - **HQ Location:** Rock Hill , US - **Twitter:** @riskprofilerio (211 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/riskprofiler (28 employees on LinkedIn®) **Reviewer Demographics:** - **Who Uses This:** Software Engineer, Security Consultant - **Top Industries:** Information Technology and Services, Design - **Company Size:** 66% Mid-Market, 33% Small-Business #### Pros & Cons **Pros:** - Risk Management (70 reviews) - Features (32 reviews) - Customer Support (31 reviews) - Ease of Use (30 reviews) - Easy Setup (29 reviews) **Cons:** - Learning Curve (17 reviews) - Complexity (16 reviews) - Difficult Learning (16 reviews) - Learning Difficulty (10 reviews) - Complex Setup (8 reviews) ### 12. [Secfix](https://www.g2.com/products/secfix/reviews) Secfix is Europe's security and compliance automation platform made for SMBs and mid-market companies. The platform automates up to 90% of the effort to achieve ISO 27001, SOC 2, GDPR, NIS2 and other compliance frameworks through deep integrations to AWS cloud, SSO, ticketing and HR systems. With direct access to European auditors and multilingual support, Secfix makes the audit experience smooth and stress-free. **Average Rating:** 4.8/5.0 **Total Reviews:** 80 **User Satisfaction Scores:** - **Ease of Admin:** 8.9/10 (Category avg: 9.0/10) - **Risk Scoring:** 8.9/10 (Category avg: 8.8/10) - **Questionnaire Templates:** 8.6/10 (Category avg: 8.6/10) - **4th Party Assessments:** 6.4/10 (Category avg: 7.9/10) **Seller Details:** - **Seller:** [Secfix](https://www.g2.com/sellers/secfix) - **Company Website:** https://secfix.com/ - **Year Founded:** 2021 - **HQ Location:** Munich, DE - **LinkedIn® Page:** https://www.linkedin.com/company/secfix (30 employees on LinkedIn®) **Reviewer Demographics:** - **Who Uses This:** CTO - **Top Industries:** Computer Software, Information Technology and Services - **Company Size:** 82% Small-Business, 18% Mid-Market #### Pros & Cons **Pros:** - Ease of Use (43 reviews) - Customer Support (31 reviews) - Helpful (26 reviews) - Compliance (24 reviews) - Guidance (24 reviews) **Cons:** - Integration Issues (11 reviews) - Limited Integration (9 reviews) - Limited Integrations (8 reviews) - Missing Features (8 reviews) - Limitations (7 reviews) ### 13. [Apptega](https://www.g2.com/products/apptega/reviews) Tired of spreadsheets that don’t scale and require too much manual effort? Hampered by overly complex IT GRC systems that have you working for them? Apptega is the cybersecurity and compliance management platform that makes it easy to assess, build, manage, and report your cybersecurity and compliance program. Organizations in all industries and MSSPs rely on Apptega to meet the challenges of cybersecurity and compliance more efficiently and cost-effectively than with any other approach. Featuring 25+ frameworks, including SOC 2, NIST, CMMC, ISO, CIS, PCI, GDPR, HIPAA and more, and manage your program with: - Multi-Tenant - Assessments - Compliance Scoring - Risk Management - Vendor Risk Management - Audit Management - Reporting - Integrations **Average Rating:** 4.7/5.0 **Total Reviews:** 153 **User Satisfaction Scores:** - **Ease of Admin:** 9.3/10 (Category avg: 9.0/10) - **Risk Scoring:** 9.3/10 (Category avg: 8.8/10) - **Questionnaire Templates:** 9.1/10 (Category avg: 8.6/10) - **4th Party Assessments:** 7.6/10 (Category avg: 7.9/10) **Seller Details:** - **Seller:** [Apptega](https://www.g2.com/sellers/apptega) - **Company Website:** https://www.apptega.com - **HQ Location:** Atlanta Junction, Georgia, United States - **Twitter:** @apptega (290 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/19418228/ (56 employees on LinkedIn®) **Reviewer Demographics:** - **Who Uses This:** Chief Information Security Officer - **Top Industries:** Information Technology and Services, Computer & Network Security - **Company Size:** 42% Mid-Market, 41% Small-Business #### Pros & Cons **Pros:** - Ease of Use (38 reviews) - Compliance Management (30 reviews) - Compliance (29 reviews) - Features (22 reviews) - Security (22 reviews) **Cons:** - Improvements Needed (12 reviews) - Limited Functionality (11 reviews) - Missing Features (8 reviews) - Limitations (7 reviews) - Limited Customization (7 reviews) ### 14. [Copla](https://www.g2.com/products/copla/reviews) Copla offers an advanced cybersecurity compliance platform for financial institutions, focusing on DORA while also supporting a range of other industry frameworks. Our platform simplifies compliance with predefined and customizable workflows that eliminate manual tasks. Employees are engaged in real-time compliance checks and evidence gathering via our chatbot Copla Stream, reducing bottlenecks and streamlining the process. Compliance evidence is automatically stored in a central location, making audits faster and always regulator-ready. Features like data extraction, risk assessment, vulnerability scanning, penetration testing, and continuous monitoring ensure businesses stay secure and compliant. We also provide business continuity planning and awareness training to strengthen security posture. Copla includes fractional CISO services, offering expert guidance and strategic leadership to help organizations navigate complex compliance and risk management challenges. With fully guided DORA implementation, compliance analysis, and robust risk management workflows, our platform empowers financial institutions to reduce compliance workloads by up to 80% and save over 60K EUR, ensuring efficient and secure operations. **Average Rating:** 4.9/5.0 **Total Reviews:** 83 **User Satisfaction Scores:** - **Ease of Admin:** 9.3/10 (Category avg: 9.0/10) - **Risk Scoring:** 9.4/10 (Category avg: 8.8/10) - **Questionnaire Templates:** 9.4/10 (Category avg: 8.6/10) - **4th Party Assessments:** 9.6/10 (Category avg: 7.9/10) **Seller Details:** - **Seller:** [Copla](https://www.g2.com/sellers/copla) - **Company Website:** https://www.copla.com - **Year Founded:** 2023 - **HQ Location:** N/A - **LinkedIn® Page:** https://www.linkedin.com/company/cyber-upgrade/ (41 employees on LinkedIn®) **Reviewer Demographics:** - **Top Industries:** Financial Services, Information Technology and Services - **Company Size:** 77% Small-Business, 27% Mid-Market #### Pros & Cons **Pros:** - Compliance (42 reviews) - Ease of Use (42 reviews) - Time-saving (30 reviews) - Auditing (29 reviews) - Evidence Collection (27 reviews) **Cons:** - Difficult Setup (12 reviews) - Integration Issues (11 reviews) - Complex Setup (9 reviews) - UX Improvement (9 reviews) - Learning Curve (8 reviews) ### 15. [Responsive, formerly RFPIO](https://www.g2.com/products/responsive-formerly-rfpio/reviews) Responsive is the global leader in strategic response management software, transforming how organizations share and exchange critical information. Our commitment to product innovation and customer success empowers companies to accelerate growth, mitigate risk and improve the employee experience by leveraging intelligent technologies to quickly and accurately manage RFPs, RFIs, security questionnaires (VSQs), due diligence questionnaires (DDQs), risk assessments and all other complex information requests (RFXs). With Responsive, frontline teams deliver superior responses by automating the completion of questionnaires, documents and spreadsheets while collaborating with stakeholders, improving processes with data insights, and quickly accessing approved content across popular business applications. **Average Rating:** 4.5/5.0 **Total Reviews:** 1,271 **User Satisfaction Scores:** - **Ease of Admin:** 8.7/10 (Category avg: 9.0/10) - **Risk Scoring:** 7.1/10 (Category avg: 8.8/10) - **Questionnaire Templates:** 7.7/10 (Category avg: 8.6/10) - **4th Party Assessments:** 6.6/10 (Category avg: 7.9/10) **Seller Details:** - **Seller:** [Responsive](https://www.g2.com/sellers/responsive) - **Company Website:** https://www.responsive.io/ - **Year Founded:** 2016 - **HQ Location:** Frisco, Texas - **Twitter:** @responsiveio (1,736 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/responsiveio (708 employees on LinkedIn®) **Reviewer Demographics:** - **Who Uses This:** Proposal Manager, Proposal Writer - **Top Industries:** Computer Software, Information Technology and Services - **Company Size:** 48% Mid-Market, 39% Enterprise #### Pros & Cons **Pros:** - Ease of Use (150 reviews) - Features (117 reviews) - Time-saving (87 reviews) - Efficiency (86 reviews) - Team Collaboration (77 reviews) **Cons:** - Learning Curve (34 reviews) - Not Intuitive (33 reviews) - Inaccurate Responses (27 reviews) - Non-Intuitive Features (27 reviews) - Missing Features (23 reviews) ### 16. [Venminder](https://www.g2.com/products/venminder/reviews) Venminder is a market leader in third-party risk management solutions. Venminder caters to the complex requirements of third-party risk management with robust solutions and expert guidance. The market-leading provider hones its solutions to address the evolving needs of risk management across various industries, servicing customers from startups to Fortune 100 organizations. Venminder's cutting-edge platform offers a centralized space for comprehensive third-party risk management. The third-party risk management software includes but is not limited to vendor onboarding and offboarding, document storage, contract and SLA tracking, questionnaire management, risk assessments, workflow creation, and comprehensive reporting. This versatility allows organizations to customize and streamline the risk management of suppliers, vendors, and third parties. Venmonitor™ is one of Venminder's standout risk intelligence solutions, designed to revolutionize third-party screening. It empowers customers to quickly screen potential or current third parties across multiple risk domains with less manual activities and without the need for direct involvement with the suppliers. With Venmonitor™, organizations gain deeper insight into crucial areas such as cybersecurity, business health, privacy, Know Your Vendor, and more. Thanks to daily refresh capabilities, users are equipped with continuous and up-to-date monitoring, ensuring that they remain ahead of any potential risks. Vendiligence™, another Venminder solution, is an outsourced service that performs on-demand control assessments on vendors, such as information security, data protection, cybersecurity, and financial health. Venminder's team of highly qualified experts includes CISSPs, CPAs, financial risk analysts, paralegals, and more. Available in an extensive online library, these risk-based assessments facilitate identifying and understanding potential risks and strengths related to vendors' information security posture, privacy standards, SOC reports, financial viability, business continuity/disaster recovery preparedness, contractual standards, and regulatory compliance. Venminder’s services also include vendor document collection, relieving customers of the cumbersome task of chasing paperwork. Additionally, their expert advisory services assist customers in aligning their third-party risk management policies and procedures with leading industry standards. Venminder is more than a solution provider; they are a knowledge hub for the industry. Venminder’s experienced professionals frequently contribute to industry conversations at conferences through educational content and hosting CPE credit-eligible webinars. Venminder also offers Third Party ThinkTank, the world’s largest online networking community dedicated to third-party risk professionals to share insights and best practices. **Average Rating:** 4.7/5.0 **Total Reviews:** 111 **User Satisfaction Scores:** - **Ease of Admin:** 9.1/10 (Category avg: 9.0/10) - **Risk Scoring:** 8.9/10 (Category avg: 8.8/10) - **Questionnaire Templates:** 9.3/10 (Category avg: 8.6/10) - **4th Party Assessments:** 8.6/10 (Category avg: 7.9/10) **Seller Details:** - **Seller:** [Ncontracts](https://www.g2.com/sellers/ncontracts) - **Company Website:** https://www.ncontracts.com/ - **Year Founded:** 2009 - **HQ Location:** Brentwood, TN - **Twitter:** @Ncontracts (1,800 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/ncontracts/ (471 employees on LinkedIn®) **Reviewer Demographics:** - **Top Industries:** Banking, Financial Services - **Company Size:** 57% Mid-Market, 25% Small-Business #### Pros & Cons **Pros:** - Guidance (3 reviews) - Risk Management (3 reviews) - Vendor Management (3 reviews) - Communication (2 reviews) - Ease of Use (2 reviews) **Cons:** - Lack of Clarity (2 reviews) - Dashboard Issues (1 reviews) - Formatting Issues (1 reviews) - Inconvenience (1 reviews) - Information Overload (1 reviews) ### 17. [Ostendio](https://www.g2.com/products/ostendio/reviews) Welcome to the next generation of security. Ostendio is the only GRC (Governance, Risk & Compliance) platform that leverages the strength of your greatest asset. Your people. Ostendio delivers an easy-to-use, cost-effective platform that allows you to assess risk, create and manage critical policies and procedures, educate and empower your people to be secure with security awareness training, and monitor continuous compliance across 300+ security frameworks. With deep customization, advanced intelligence, and flexible controls, you’re always audit-ready, always secure, and always able to take on what’s next. www.ostendio.com. **Average Rating:** 4.8/5.0 **Total Reviews:** 40 **User Satisfaction Scores:** - **Ease of Admin:** 8.3/10 (Category avg: 9.0/10) - **Risk Scoring:** 9.0/10 (Category avg: 8.8/10) - **Questionnaire Templates:** 9.3/10 (Category avg: 8.6/10) - **4th Party Assessments:** 7.9/10 (Category avg: 7.9/10) **Seller Details:** - **Seller:** [Ostendio](https://www.g2.com/sellers/ostendio) - **Year Founded:** 2013 - **HQ Location:** McLean, Virginia - **Twitter:** @Ostendio (868 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/ostendio/ (19 employees on LinkedIn®) **Reviewer Demographics:** - **Top Industries:** Information Technology and Services, Health, Wellness and Fitness - **Company Size:** 57% Mid-Market, 35% Small-Business #### Pros & Cons **Pros:** - Ease of Use (3 reviews) - Features (2 reviews) - Helpful (2 reviews) - Audit Efficiency (1 reviews) - Audit Management (1 reviews) **Cons:** - Non-Intuitive Features (1 reviews) - Not Intuitive (1 reviews) ### 18. [Risk Ledger](https://www.g2.com/products/risk-ledger/reviews) Risk Ledger is a pioneering third-party risk management platform that revolutionises supply chain security through a powerful, unified solution. By onboarding and connecting your entire supply chain into an active network, Risk Ledger provides real-time insights to identify concentration risks and emerging threats. Our dynamic network-based model offers a clear view of your entire supply chain, enhancing your ability to visualise and manage risks effectively. With immediate access to a vast, trusted supplier network and continuously updated risk assessments, Risk Ledger streamlines risk management processes, reduces manual workload, and empowers you with unparalleled clarity and control across all supply chain tiers. Join 10,000+ organisations on the Risk Ledger network today. **Average Rating:** 4.4/5.0 **Total Reviews:** 126 **User Satisfaction Scores:** - **Ease of Admin:** 8.9/10 (Category avg: 9.0/10) - **Risk Scoring:** 8.7/10 (Category avg: 8.8/10) - **Questionnaire Templates:** 8.5/10 (Category avg: 8.6/10) - **4th Party Assessments:** 7.2/10 (Category avg: 7.9/10) **Seller Details:** - **Seller:** [Risk Ledger](https://www.g2.com/sellers/risk-ledger) - **Company Website:** https://riskledger.com/ - **Year Founded:** 2018 - **HQ Location:** London, GB - **Twitter:** @RiskLedger (633 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/risk-ledger/ (86 employees on LinkedIn®) **Reviewer Demographics:** - **Top Industries:** Computer Software, Information Technology and Services - **Company Size:** 47% Mid-Market, 29% Small-Business #### Pros & Cons **Pros:** - Ease of Use (30 reviews) - Risk Management (19 reviews) - Time-saving (18 reviews) - Efficiency (15 reviews) - Helpful (12 reviews) **Cons:** - Complex Setup (5 reviews) - Difficult Setup (4 reviews) - Onboarding Difficulties (4 reviews) - Poor Interface Design (4 reviews) - Improvement Needed (3 reviews) ### 19. [Conveyor](https://www.g2.com/products/conveyor-conveyor/reviews) Conveyor is the market-leading AI security review automation platform that helps infosec & presales teams automate the entire security review -- from security questionnaire completion and sharing security documentation like a SOC 2 in one-click. With AI so accurate, you can even pass most of your security review workflows to our new AI Agent for Customer Trust. Why teams love Conveyor: 1. The only trust center to offer an upload questionnaire for instant answers experience along with all the bells & whistles to share security documentation at scale 2. Plus, AI-questionnaire response to auto-generate 95%+ accurate answers to entire questionnaires so you can speed through review. **Average Rating:** 4.6/5.0 **Total Reviews:** 150 **User Satisfaction Scores:** - **Ease of Admin:** 9.2/10 (Category avg: 9.0/10) - **Risk Scoring:** 7.5/10 (Category avg: 8.8/10) - **Questionnaire Templates:** 8.0/10 (Category avg: 8.6/10) - **4th Party Assessments:** 7.5/10 (Category avg: 7.9/10) **Seller Details:** - **Seller:** [Conveyor](https://www.g2.com/sellers/conveyor-5e432251-cc59-40a2-a9dd-cff110558d40) - **Company Website:** https://www.conveyor.com - **Year Founded:** 2021 - **HQ Location:** San Francisco, US - **Twitter:** @conveyor (380 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/conveyorhq (61 employees on LinkedIn®) **Reviewer Demographics:** - **Who Uses This:** Account Executive - **Top Industries:** Computer Software, Information Technology and Services - **Company Size:** 59% Mid-Market, 27% Enterprise #### Pros & Cons **Pros:** - Ease of Use (46 reviews) - Efficiency (34 reviews) - Time-saving (30 reviews) - Intuitive (23 reviews) - Artificial Intelligence (17 reviews) **Cons:** - Missing Features (9 reviews) - Inaccurate Responses (6 reviews) - Poor Interface Design (6 reviews) - Lack of Clarity (5 reviews) - Limited Customization (5 reviews) ### 20. [Loopio](https://www.g2.com/products/loopio/reviews) Loopio is the most highly-trusted response management software, helping enterprise businesses supercharge and scale their response process for RFPs, RFIs, Security Questionnaires, and more. Loopio streamlines manual and time-consuming processes through: Confident Answers: Our AI-powered library connects to preferred content sources, enabling teams to craft tailored responses, populate trustworthy answers, and ensure accuracy across every proposal. Effortless Projects: AI-driven automation helps teams seamlessly import and export complex document formats, track high-volume proposal pipelines, and respond to portal-based RFPs with ease. Seamless Collaboration: Our vast integrations break down departmental silos, allowing responders to engage with SMEs, centralize multi-stakeholder feedback, and deliver vetted content—all within an existing tech stack. Strategic Insights: Loopio transforms the response process into a data-driven operation by providing the visibility needed to monitor content health, identify winning trends, and measure business impact. At the heart of our enterprise RFP platform is Response Intelligence™, Loopio’s proprietary machine learning technology. It surfaces insights and makes recommendations in the response process to help responders work smarter and create winning proposals, making it the easiest RFP response solution to use on the market. The proof is in the numbers. Loopio customers experience: ■ 51% more RFP responses completed ■ 42% in time savings ■ And 85% win more business Loopio’s RFP software is trusted by 1,700+ leading companies to respond faster, improve response quality, and win more business. We’d love for you to be one of them. **Average Rating:** 4.6/5.0 **Total Reviews:** 802 **User Satisfaction Scores:** - **Ease of Admin:** 9.1/10 (Category avg: 9.0/10) - **Risk Scoring:** 7.7/10 (Category avg: 8.8/10) - **Questionnaire Templates:** 8.8/10 (Category avg: 8.6/10) - **4th Party Assessments:** 7.3/10 (Category avg: 7.9/10) **Seller Details:** - **Seller:** [Loopio Inc.](https://www.g2.com/sellers/loopio-inc) - **Company Website:** https://www.loopio.com - **Year Founded:** 2014 - **HQ Location:** Toronto - **Twitter:** @loopioinc (1,664 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/5020707/ (300 employees on LinkedIn®) **Reviewer Demographics:** - **Who Uses This:** Proposal Manager, Bid Manager - **Top Industries:** Computer Software, Information Technology and Services - **Company Size:** 51% Mid-Market, 34% Enterprise #### Pros & Cons **Pros:** - Ease of Use (140 reviews) - Time-saving (94 reviews) - Efficiency (88 reviews) - Features (82 reviews) - Intuitive (68 reviews) **Cons:** - Missing Features (31 reviews) - Limitations (27 reviews) - Limited Features (26 reviews) - Inaccurate Responses (25 reviews) - Formatting Issues (24 reviews) ## Parent Category [Risk Assessment Software](https://www.g2.com/categories/risk-assessment) ## Related Categories - [Audit Management Software](https://www.g2.com/categories/audit-management) - [Regulatory Change Management Software](https://www.g2.com/categories/regulatory-change-management) - [IT Risk Management Software](https://www.g2.com/categories/it-risk-management) - [Third Party & Supplier Risk Management Software](https://www.g2.com/categories/third-party-supplier-risk-management) - [Policy Management Software](https://www.g2.com/categories/policy-management) - [Cloud Compliance Software](https://www.g2.com/categories/cloud-compliance) - [Security Compliance Software](https://www.g2.com/categories/security-compliance)