Get audit-ready, and prove it.
Keel is the GRC platform for SMBs getting their first SOC 2 or ISO 27001. One unified control & evidence graph — every feature is a view of it. Out-simplified and priced for startups.
Everything is a projection of one graph
Controls & evidence
One control library, crosswalked to every framework. Collect evidence once, satisfy many.
Questionnaires
Inbound security questionnaires, answered fast from a reusable answer bank.
Policy builder
Structured, versioned policies from original templates — exported as branded PDFs.
Trust center
A public, read-only view of your controls and evidence. We dogfood our own.
Start with ISO 27001:2022. SOC 2 next.
New frameworks are data, not code. Keel ships the ISO/IEC 27001:2022 model with the management clauses 4–10 and all 93 Annex A controls, ready to map to your controls and evidence.
93
Annex A controls, mapped
4 themes
Organizational · People · Physical · Technological
Crosswalk
One control satisfies many frameworks
ISO/IEC 27001 is referenced by clause name and number. Keel is not affiliated with or endorsed by ISO/IEC. See Legal & Trademarks.