FAQ
Frequently Asked Questions
Everything you need to know about SecureScope.
01What scan types does SecureScope support?
SecureScope currently supports SAST (Static Application Security Testing) and SCA (Software Composition Analysis). DAST (Dynamic Application Security Testing) and IAST (Interactive Application Security Testing) are on the roadmap and coming soon. IaC scanning and container image analysis are also planned.
02How does per-developer pricing work?
Per-developer pricing is calculated based on the number of unique developers who commit code to scanned repositories in a given calendar month. Security analysts, compliance officers, and read-only users are not counted toward the developer seat limit. You are only billed for active contributors.
03Which compliance frameworks are supported?
The Business plan includes automated mapping to PCI-DSS v4.0, SOC 2 (Trust Services Criteria), ISO 27001:2022, GDPR, and the Kenya Data Protection Act (KDPA 2019). Enterprise customers can request custom framework mappings aligned to internal security standards.
04Is there a free plan?
Yes. The Free plan supports 1 project with basic SAST scanning and up to 10 findings per month at no cost. No credit card is required to sign up. You can upgrade to Team or Business at any time.
05How does multi-tenant isolation work?
SecureScope is built as a multi-tenant SaaS platform. All data access is tenant-scoped at the database query level — your data is logically and technically isolated from other organizations. No client-side or application-level overrides can bypass this isolation. It is enforced exclusively at the backend.
06Can I deploy SecureScope on-premise?
On-premise and private cloud deployment is available on the Enterprise plan. We support containerized deployments and can provide full installation support for your infrastructure team. Contact our enterprise sales team to discuss your deployment requirements.
Still have questions?
Our team is happy to help with any questions not covered here.
Contact Us