Skip to main content
Pricing & Features

Three CyberHub plans. One outcome: your renewal passes.

Transparent, per-endpoint pricing. Every plan is engineered against the FTC Safeguards Rule and NIST SP 800-171. No setup hidden fees, no surprises at renewal.

Essential
Compliant and covered
$35/endpoint/mo
Best for
Single-rooftop dealerships getting renewal coverage in place.
EDR on every endpoint
Email security + phishing protection
MFA enforcement on all admin accounts
Daily encrypted backup
Quarterly FTC posture review
Annual signed attestation
Best for renewals under $50K
Most popular
Professional
Proactive and audit-ready
$65/endpoint/mo
Best for
Multi-rooftop dealer groups with carrier scrutiny.
Everything in Essential
24/7 SOC monitoring + alerting
Vendor risk management
Phishing simulation + training
Privileged access management
Incident response retainer (24-hour SLA)
Underwriter evidence portal
Carrier-ready quarterly attestations
Most popular for mid-sized groups
Fortress
Enterprise-grade resilience
$110/endpoint/mo
Best for
Large dealer groups and OEMs with DoD supply-chain or CMMC concerns.
Everything in Professional
Dedicated vCISO
Threat-hunting team
Compliance-as-a-service (CMMC L2 ready)
Network segmentation + Zero Trust
Tabletop exercises (semi-annual)
Concierge claim assistance
Direct breach-counsel hotline
For enterprise resilience
FTC Safeguards Rule §314.4 coverage

Every rule line, mapped to a plan

The FTC Safeguards Rule (Standards for Safeguarding Customer Information, effective June 2023) applies to every dealership that extends credit, arranges financing, or handles consumer non-public information. Here is exactly which rule line each plan satisfies.

§314.4(a)
Designate a Qualified Individual

Every plan appoints a named Flynaut advisor + your internal Qualified Individual, signed onto the annual attestation.

essential
professional
fortress
§314.4(b)
Written risk assessment

The nine-question CyberHub Assessment produces a scored, versioned written risk assessment stored in your evidence vault.

essential
professional
fortress
§314.4(c)(1)
Access controls (MFA, least-privilege)

Enforced MFA on every admin account, PAM policy on Professional+, and Zero-Trust segmentation on Fortress.

essential
professional
fortress
§314.4(c)(2)
Data inventory + classification

Endpoints, servers, F&I systems, and DMS instances inventoried at onboarding and monitored continuously.

essential
professional
fortress
§314.4(c)(3)
Encryption at rest and in transit

Full-disk encryption verified on all endpoints. Backups encrypted. TLS 1.2+ enforced across email + web portals.

essential
professional
fortress
§314.4(c)(5)
MFA on every admin and remote access

Enforced organization-wide via Microsoft/Google identity. Reviewed quarterly with policy signed by the Qualified Individual.

essential
professional
fortress
§314.4(c)(6)
Secure disposal of consumer information

Documented retention schedule + verified secure-wipe process for retired hardware. Chain-of-custody logged in the vault.

essential
professional
fortress
§314.4(c)(8)
Continuous monitoring OR periodic pen testing

Essential = quarterly vulnerability scan. Professional / Fortress = continuous SOC monitoring with 24/7 alerting.

-
professional
fortress
§314.4(d)-(h)
Training, IR plan, vendor mgmt, board reporting

Phishing sims + annual security training. Written IR plan, tested via tabletop (Fortress). Annual board-level report signed by the Qualified Individual.

-
professional
fortress

Non-compliance with §314 exposes dealers to civil penalties (up to $46,517 per violation, per the FTC 2024 penalty schedule) and adverse renewal underwriting decisions. Flynaut's attestation is nota guarantee of a cyber-insurance bind; final coverage and pricing remain the underwriter's call.

Bundled with every plan

The Flynaut difference - value-adds that other providers either skip or charge a premium for.

Carrier underwriting alignment

Carrier-ready evidence pack accepted by Travelers, Coalition, At-Bay, Chubb, and AIG. Most clients see 15-30% premium relief at first renewal.

Signed FTC attestation

Annual attestation, signed by your dedicated Flynaut advisor, mapped to NIST 800-171 + CMMC L2 controls. Auditor-ready.

Concierge claim assist

If you do get hit, our IR team coordinates with your carrier's panel forensics - and your panel counsel - from hour one.

One-time onboarding fees

Transparent flat fees, no hourly add-ons.

Onboarding & deployment
Endpoint deployment, MFA rollout, baseline hardening.
$1,500 - $4,500
FTC Readiness Assessment
9-question scored assessment + signed attestation.
$1,500

Onboarding fees waived for Fortress plans with annual commitment.

Need volume pricing or a custom scope?

For multi-region dealer groups, OEM partnerships, or CMMC-driven engagements, talk to our team.

Talk to sales