01Recurring
Recurring revenue model
Monthly or annual compliance monitoring contracts for each client. Higher margins than project work.
Turn compliance into a service line. Not a cost centre.
Fig is a governance-first compliance platform built specifically for Managed Service Providers and their clients. Deliver continuous compliance monitoring as a premium recurring revenue service that scales with your client base.
Two-sided platform
One platform. Two views. Complete alignment.
Both sides see the same data. No conflicting reports. No duplication.
Your MSP view
Portfolio visibility
Log in and see a portfolio view across every customer. Open actions, SLA status, compliance posture, and remediation priorities - all in one place.
- Portfolio dashboard across all clients
- Actions assigned to your team with SLA deadlines
- Compliance status per client, per framework
Your customer view
Evidence of delivery
Your customers log in and see their own compliance posture, the actions you are taking on their behalf, and the evidence trail proving it.
- Independent visibility into their compliance status
- Evidence of MSP actions against agreed SLAs
- Audit-ready documentation without asking you for it
The revenue opportunity
Compliance as your next growth line.
02Margin
Significant markups
We price the platform so low for your clients that your markups can be significant. Build a high-margin compliance practice without the overhead.
03Efficiency
Efficiency gains
Automation reduces delivery costs per client while improving quality and consistency.
3-5×
Higher MSP margins on Fig
Based on Fig platform pricing compared to equivalent compliance automation tools at comparable client scale.
See compliance-linked cyber insurance for MSPs
Cyber Essentials for MSPs - sector hub · MSP risk management
Three operating models
Choose what works for your business.
01Managed
Managed model
Fig manages compliance assessments and evidence collection for your clients.
- Recurring revenue
- White-label ready
- Low operational overhead
02Independent
Independent model
Your team runs assessments, Fig automates the evidence tracking.
- Full service control
- Team ownership
- Premium positioning
03Hybrid
Shared control
Hybrid approach: you handle client relationships, Fig handles the data.
- Flexibility
- Scalability
- Best of both worlds
Pricing
Transparent pricing tailored to your MSP.
We structure pricing so MSPs can build a high-margin compliance practice from day one.
01Onboarding
No onboarding fees
Account creation, framework configuration, and initial training are included. You start delivering compliance services from day one without a setup invoice.
02Integrations
No integration surcharges
Connect Microsoft 365, Google Workspace, AWS, Azure, and your existing security stack without per-integration fees or hidden volume tiers.
03Billing
No surprise invoices
Pricing is fixed at your tier. No mid-quarter usage charges, no per-report fees, no late add-ons appearing on the bill at renewal.
04Cadence
Monthly contracts available
Start month-to-month while you scale your client base. Annual is discounted if you want it, but you are never forced into a long commitment.
05Lock-in
No multi-year lock-ins
We do not trap MSPs into 24- or 36-month deals. If Fig is not delivering value, we want you to leave - and we make that easy.
06Exit
Cancel with 30 days notice
Notice period is 30 days for any reason. No exit fees, no data hostage, full client export and data return included as standard.
48-hour go-live
We handle the setup. You handle the client relationships.
Day 1
Framework selection
Choose your compliance frameworks and set client scope.
Day 1-2
Integration
Connect your data sources and cloud environments.
Day 2
Live dashboards
Real-time compliance visibility. Start generating reports.
Support
How we support you.
Real people, real response times, real accountability.
01SLA
Response times
P1: 2 hours. P2: 4 hours. P3: next business day. Published and accountable.
02Onboarding
Dedicated onboarding
Named onboarding lead. Hour 1: frameworks. Hour 12: integrations live. Hour 48: dashboards active.
03Cadence
Quarterly reviews
Business reviews every quarter. Platform usage, compliance trends, and growth planning with your account lead.
04Escalation
Clear escalation
Unresolved after SLA? Auto-escalates to senior engineering. You always know where your ticket stands.
Switching
Already using another platform?
Fig sits across your existing tools - no rip-and-replace required.
01Evaluate
Run in parallel
Keep your current tools running while you evaluate Fig. No disruption, no pressure, no commitment until you are ready.
02Stack-friendly
No rip and replace
Fig connects to your existing RMM, PSA, cloud, and security tools via 300+ integrations. Your stack stays in place.
03Portability
Your data is yours
If you leave, you take everything with you. Full export in standard formats. No exit fees. No data held hostage.
Commitments
Our commitments to you.
We have seen what happens when vendors break trust. Here's how we do things differently.
01Lock-in
No multi-year lock-ins
Monthly and annual contracts. You choose. We do not trap you in agreements you cannot leave.
02Pricing
No price surprises
The price we quote is the price you pay. We do not increase prices mid-contract or add hidden fees after you sign.
03Architecture
Purpose-built, not acquired
Fig is built from the ground up as one platform. We do not buy companies and bolt products together.
04Roadmap
We sell what exists
We will never demo a feature that is not live in production. If it is on the roadmap but not shipped, we will tell you.
05Hosting
You host it, you control it
Fig is deployed in your own cloud environment. Your data stays in your tenancy. Encrypted at rest and in transit.
06Sales
No aggressive sales
We do not cold call and we do not add you to email lists without consent. If you want a demo, request one.
FAQ
Questions?
Everything you need to know before you speak to the team.
How does Fig turn compliance into a recurring revenue service?
Fig automates the repetitive, manual parts of compliance work. Instead of spending 3-6 months on initial assessments, you can offer continuous compliance monitoring as a monthly or annual service. Your team becomes a service provider, not a project-based consultant.
Can we white-label Fig for our clients?
Yes. Fig supports fully white-labelled deployments so your brand is what clients see. You control the narrative and relationship while Fig powers the backend.
What frameworks do you support?
We support Cyber Essentials, Defence Cyber Certification (DCC L0/L1) for MOD-supply-chain clients, ISO 27001, SOC 2, CMMC, GDPR, NIS2, and DORA. We continuously add new frameworks based on demand.
How long does it take to go live with a new client?
Most clients can be live in 48 hours. Initial setup includes framework selection, user onboarding, and evidence source configuration.
How does the insurance piece work?
Your compliance data becomes underwriting evidence that helps your clients secure better insurance terms. You don't need to earn from insurance directly - we subsidise this through our platform economics. Your margin comes from marking up the platform itself.
What happens to client data when they leave?
Clients own their data. If they leave, they can export everything in standard formats. We never lock data in or restrict access.
Can Fig integrate with our existing tools?
Yes. Fig integrates with most major enterprise tools including cloud infrastructure, identity providers, vulnerability scanners, and ticketing systems.
What kind of support do you provide?
Dedicated onboarding with a named lead, ongoing technical support with published SLAs (P1: 2 hours, P2: 4 hours, P3: next business day), regular training, and quarterly business reviews.
Are we locked into a long-term contract?
No. We offer monthly and annual contracts. Annual contracts come with better rates, but there are no multi-year lock-ins. Cancel with 30 days notice.
How does pricing work?
Pricing is tailored to each MSP based on client count and scope. There are no onboarding fees, no integration surcharges, and no hidden costs. Contact us for a quote.
Can we run Fig alongside our current tools during evaluation?
Yes. Fig sits across your existing stack via 300+ integrations. You can run it in parallel with your current compliance tooling with no disruption.
Where is our data hosted?
Fig is hosted on Microsoft Azure in UK data centres. Data is encrypted at rest and in transit. We maintain regular backups with documented recovery procedures.
Contact
Ready to build a compliance service line?
Let's talk about how Fig can help you turn compliance into recurring revenue.