Beta Programme Opens October 2026 — 20 Cohort Spots

Risk Intelligence.
Not Risk Theater.

Arc is the risk intelligence platform built from the inside out — by a practitioner with nine consecutive clean audit cycles and zero external findings. It converts governance signals into intelligence your board, your CISO, and your auditors can act on.

15 integrated modules. TPRE. AIRE. Policy. Evidence. Vendor risk. One platform, delivered as SaaS.

Request a Briefing See the Beta Programme
15
integrated modules
9
clean audit cycles
0
external findings
Vendors
AI Systems
Policies
Incidents
Arc Core
Risk Intelligence Engine
Signal, analysis, and intelligence through one operational layer.
Intelligence Architecture
From signal to decision in one continuous loop.
Stage 01
Signal Intake
Vendors, AI systems, assets, incidents, and policy changes — all entering through one operational layer.
Stage 02
Intelligence Analysis
TPRE, AIRE, policy mapping, and applicability rules run concurrent analysis against your risk profile.
Stage 03
Actionable Output
Dashboards, board reports, and evidence packets stay current. Intelligence exists before it is demanded.

Arc is opinionated about process, flexible about infrastructure, and designed to leave an intelligence trail behind every risk decision.

Scroll
Why Arc Exists

Your GRC platform generates reports. Arc generates intelligence.

Most organisations confuse risk documentation with risk intelligence. They have platforms that log assessments, store policies, and produce reports. None of that tells you where your risk actually is right now — or what to do about it before it becomes an incident, a finding, or a breach.

Arc was built to operationalise the governance programmes GOVERNANCE Ltd. already runs in production — TPRE, AIRE, policy management, audit evidence, vendor risk, asset inventory, compliance KPIs. Every module exists because it was needed under real audit pressure, not because a product manager added it to a roadmap slide.

The industry standard
Annual point-in-time assessments. Bolt-on modules. Six-month onboarding. A platform that checks a box on a vendor evaluation form and delivers a 200-page guide you will never finish reading.
The typical outcome
Half-configured platforms generating false confidence. Audit surprises. Evidence sprints. Board reports assembled by hand the week before the meeting.
The Arc difference
Continuous risk signal. Evidence as an operational byproduct. Intelligence your board can act on at any moment — because the system is always collecting it.
Architecture Principle

Bring Your
Own Stack.

Arc ships as pure SaaS — hosted, operated, and patched by us. You don't run the platform. You connect it to the systems you already run: SIEM, storage, RMM, timestamping. Arc meets your stack where it lives instead of asking you to consolidate around ours.

The AI layer is the one place we made the call ourselves. Models, providers, and governance posture are selected, contracted, and operated by Arc to the same audit standard as the rest of the platform — because where AI sits inside a risk system is itself a governance decision, and not one we delegate.

Request a Briefing
Your SIEM
Native Wazuh integration. Other SIEM endpoints connect via the open connector architecture.
Your Storage
Point evidence and artefact retention at your own Wasabi, S3, or object store. Arc holds the index, you hold the bytes.
Your RMM
Datto RMM and Azure integrations built in for asset inventory sync. Additional connectors on the roadmap.
Your TSA
FreeTSA covers baseline deployments. Bring an ETSI-qualified TSA for EU AI Act and eIDAS-level assurance.
Built on Proven Ground

Arc is the software expression of a risk intelligence methodology that has produced nine consecutive clean audit cycles with zero external findings.

GOVERNANCE Ltd. has maintained compliance across HITRUST CSF and PCI DSS without a single external finding across nine consecutive audit cycles. Arc is built to codify and operationalise exactly that standard — not as aspiration, but as engineering output.

Every module in Arc maps to a programme that has been deployed and tested under real audit conditions. The TPRE programme underpins the vendor risk engine. The AIRE programme is the AI risk intelligence module. The evidence vault was designed around the exact artefact requirements of HITRUST and PCI DSS examiners. This is not theoretical software.

9 Consecutive clean audit cycles
0 External audit findings
15 Integrated intelligence modules
5+ Regulatory frameworks natively mapped
Beta Programme

Twenty organisations.
Selected for diversity.
Opening October 2026.

This is not an open waitlist. The beta cohort will be deliberately assembled to represent the widest possible range of industries, regulatory regimes, and use cases. If you are accepted, you are shaping Arc for everyone who comes after you.

What beta members receive
01
$450/month — locked
Held for your entire beta period and for one full year after general availability. GA pricing starts at $750/month.
02
Setup fee waived
The $2,000 instance setup fee is waived entirely for beta cohort members.
03
Monthly 1:1 with Tim
30 minutes each month, direct with the principal. Your feedback shapes what gets built next.
04
Beta group calls
Monthly calls with the full 20-member cohort. Peer learning, shared priorities, collective roadmap input.
05
Direct roadmap influence
Beta cohort members have formal input on the Arc roadmap throughout the programme — not a suggestion box, an actual seat.
What we ask in return
1-year minimum commitment under a formal beta programme agreement
Active participation in monthly 1:1 and group calls
Candid, structured feedback — positive and critical
Accepted organisations receive a formal beta programme agreement covering pricing lock, participation expectations, and transition to GA terms.
Ready to be in the room where Arc gets built?
Express your interest. We will review your submission and reach out if there is a fit in the cohort for your organisation's profile.
Request a Briefing
Pricing

Full platform access.
One price. No module tax.

Every Arc subscription includes all 15 modules. Pricing varies only by contract term and whether you are deploying Arc alongside a GOVERNANCE Ltd. consulting engagement.

October 2026 — Limited to 20
Beta
$450 /month
Price locked for beta period + 1 year post-GA
Setup Fee Waived
Term 1-year minimum
Modules All 15 — full access
Express Beta Interest
General Availability
Annual
$750 /month
Best value for established deployments
Setup Fee $2,000
Term 1-year contract
Modules All 15 — full access
Express Interest
General Availability
Monthly
$1,000 /month
Maximum flexibility
Setup Fee $2,000
Term No long-term commitment
Modules All 15 — full access
Express Interest
Deploying Arc with a GOVERNANCE Ltd. consulting engagement?
Arc is available at $500/month when bundled with an active consulting programme. Contact GOVERNANCE Ltd. directly.
Talk to GOVERNANCE Ltd.
Apply to the Cohort

Twenty spots. Tell us about your programme.

We read every submission. If your industry, regulatory regime, or risk profile fits a gap in the current cohort, we will reach out within five business days.

By submitting you consent to Arc / GOVERNANCE Ltd. contacting you about the cohort. We do not share your information, ever.