The full buyer journey, in seven short steps. The shape mirrors how professional compliance documentation has been sold for decades — maintained currency, transparent verification, single invoice.
Every checklist ships with a Regulatory Compliance Matrix as a downloadable verification document — every regulatory paragraph appears as a row, mapped to the audit questions that cover it (or marked as informational or out-of-scope where applicable). This is the auditor-of-the-auditor artefact: full proof of coverage, before any commitment.
You can download the matrix from any product page — no email, no signup. If the methodology and coverage stand up to your scrutiny, the audit checklist itself will too.
Each product page carries a watermarked sample of the audit checklist itself — cover, licence page, and three representative question pages. You see the actual rendered question format: source-verbatim regulation text, four-state compliance classification, finding level, suggested evidence, management system reference field.
One checklist, one price, 12 months of updates included, licensed per organisation. The price is shown on each checklist's page and depends on its scope. Licensing for a group of separate legal entities? Request a group-licensing quote.
Checkout is Stripe-hosted: enter your organisation name (the licensee), VAT ID if applicable, card. A VAT-compliant invoice is issued automatically on payment, addressed to your organisation.
Not a subscription. Same procurement shape as buying a consultant engagement or an annual standards subscription: single invoice, single approval line, no card-on-file, no auto-debit.
Within a few minutes of payment, you receive a transactional email containing direct download links for the five artefact formats:
The VAT-compliant invoice PDF link is also included.
No DRM, no remote disable. You print the PDF and take it into the audit; you open the workbook on a laptop in the office; you upload the CSV into your audit or GRC tooling. The bundle is yours to use within your organisation as part of your normal compliance management work.
When the regulator publishes an amendment to your checklist within the 12-month update window, we re-author the affected paragraphs against the new version, re-render the bundle, and email the updated artefacts to you automatically. Our publish SLA is 30 days from the regulator's publication date; non-delivery within that window is treated as a defect.
A transparent change log accompanies each amendment so you can see exactly what changed and where.
Thirty days before your update window ends, you receive a renewal email with a one-click checkout link priced at the current rate. No auto-debit; you opt back in if you want the next year of currency.
If you don't renew, you keep every artefact you've downloaded — forever, no DRM, no expiry on downloaded files. You simply stop receiving new amendments after the 12-month window closes.