Choose the right certification level
From fully automated auditing to Sofistic's continuous red team
B
Basic
Score 60–74%
From €299/year
100% automated AI
Audit Annual
Up to 1,000 URLs per domain
Monthly per-page re-scan
- Seguridad técnica
- TLS 1.2+, HSTS and Certificate Transparency
- Security headers (CSP, X-Frame, COOP/COEP)
- DNS and email (SPF, DKIM, DMARC, DNSSEC)
- OWASP, CSRF and mixed content
- Attack surface and critical CVEs
- Reputation, blacklists and breaches
- Identidad y legal
- —Legal identity (registry, VAT/VIES, WHOIS)
- —Regulatory compliance (LSSI, DSA, WCAG)
- Privacidad y cumplimiento
- —GDPR privacy (banner, policy, DPO)
- —Continuous monitoring
- —Manual pentesting (Sofistic pentesters)
- —Continuous Sofistic Red Team
- Confianza y experiencia
- AI Ready for LLMs (JSON-LD, sitemap, llms.txt)
- UX/Trust (visible contact, VAT ID, seal)
- Verifiable seal
- Downloadable PDF report
- —API access (scores, history, reports)
- —Guaranteed SLA
- —Dedicated account manager
55 automated controls audited
Most chosen
S
Standard
Score 75–89%
From €599/year
100% automated AI
Audit Biannual
Unlimited URLs
Weekly per-page re-scan
- Seguridad técnica
- TLS 1.2+, HSTS and Certificate Transparency
- Security headers (CSP, X-Frame, COOP/COEP)
- DNS and email (SPF, DKIM, DMARC, DNSSEC)
- OWASP, CSRF and mixed content
- Attack surface and critical CVEs
- Reputation, blacklists and breaches
- Identidad y legal
- Legal identity (registry, VAT/VIES, WHOIS)
- —Regulatory compliance (LSSI, DSA, WCAG)
- Privacidad y cumplimiento
- GDPR privacy (banner, policy, DPO)
- Continuous monitoring
- —Manual pentesting (Sofistic pentesters)
- —Continuous Sofistic Red Team
- Confianza y experiencia
- AI Ready for LLMs (JSON-LD, sitemap, llms.txt)
- UX/Trust (visible contact, VAT ID, seal)
- Verifiable seal
- Downloadable PDF report
- API access (scores, history, reports)
- —Guaranteed SLA
- —Dedicated account manager
68 automated controls audited
P
Premium
Score 90–97%
From €2,499/year
AI + Sofistic Pentesters
Audit Quarterly
Unlimited URLs
Weekly per-page re-scan
- Seguridad técnica
- TLS 1.2+, HSTS and Certificate Transparency
- Security headers (CSP, X-Frame, COOP/COEP)
- DNS and email (SPF, DKIM, DMARC, DNSSEC)
- OWASP, CSRF and mixed content
- Attack surface and critical CVEs
- Reputation, blacklists and breaches
- Identidad y legal
- Legal identity (registry, VAT/VIES, WHOIS)
- Regulatory compliance (LSSI, DSA, WCAG)
- Privacidad y cumplimiento
- GDPR privacy (banner, policy, DPO)
- Continuous monitoring
- Manual pentesting (Sofistic pentesters)
- —Continuous Sofistic Red Team
- Confianza y experiencia
- AI Ready for LLMs (JSON-LD, sitemap, llms.txt)
- UX/Trust (visible contact, VAT ID, seal)
- Verifiable seal
- Downloadable PDF report
- API access (scores, history, reports)
- Guaranteed SLA
- —Dedicated account manager
75 automated controls audited
E
Enterprise
Score 98–100%
Custom
AI + Sofistic Pentesters + Sofistic Red Team
Audit Continuous
Unlimited URLs
Weekly re-scan (custom configurable)
- Seguridad técnica
- TLS 1.2+, HSTS and Certificate Transparency
- Security headers (CSP, X-Frame, COOP/COEP)
- DNS and email (SPF, DKIM, DMARC, DNSSEC)
- OWASP, CSRF and mixed content
- Attack surface and critical CVEs
- Reputation, blacklists and breaches
- Identidad y legal
- Legal identity (registry, VAT/VIES, WHOIS)
- Regulatory compliance (LSSI, DSA, WCAG)
- Privacidad y cumplimiento
- GDPR privacy (banner, policy, DPO)
- Continuous monitoring
- Manual pentesting (Sofistic pentesters)
- Continuous Sofistic Red Team
- Confianza y experiencia
- AI Ready for LLMs (JSON-LD, sitemap, llms.txt)
- UX/Trust (visible contact, VAT ID, seal)
- Verifiable seal
- Downloadable PDF report
- API access (scores, history, reports)
- Guaranteed SLA
- Dedicated account manager
75 automated controls + sector-specific ad-hoc controls
B
Basic
Score 60–74%
From €299/year
Annual
100% automated AI
Up to 1,000 URLs per domain
Monthly per-page re-scan
- Seguridad técnica
- TLS 1.2+, HSTS and Certificate Transparency
- Security headers (CSP, X-Frame, COOP/COEP)
- DNS and email (SPF, DKIM, DMARC, DNSSEC)
- OWASP, CSRF and mixed content
- Attack surface and critical CVEs
- Reputation, blacklists and breaches
- Identidad y legal
- —Legal identity (registry, VAT/VIES, WHOIS)
- —Regulatory compliance (LSSI, DSA, WCAG)
- Privacidad y cumplimiento
- —GDPR privacy (banner, policy, DPO)
- —Continuous monitoring
- —Manual pentesting (Sofistic pentesters)
- —Continuous Sofistic Red Team
- Confianza y experiencia
- AI Ready for LLMs (JSON-LD, sitemap, llms.txt)
- UX/Trust (visible contact, VAT ID, seal)
- Verifiable seal
- Downloadable PDF report
- —API access (scores, history, reports)
- —Guaranteed SLA
- —Dedicated account manager
55 automated controls audited
Most chosen
S
Standard
Score 75–89%
From €599/year
Biannual
100% automated AI
Unlimited URLs
Weekly per-page re-scan
- Seguridad técnica
- TLS 1.2+, HSTS and Certificate Transparency
- Security headers (CSP, X-Frame, COOP/COEP)
- DNS and email (SPF, DKIM, DMARC, DNSSEC)
- OWASP, CSRF and mixed content
- Attack surface and critical CVEs
- Reputation, blacklists and breaches
- Identidad y legal
- Legal identity (registry, VAT/VIES, WHOIS)
- —Regulatory compliance (LSSI, DSA, WCAG)
- Privacidad y cumplimiento
- GDPR privacy (banner, policy, DPO)
- Continuous monitoring
- —Manual pentesting (Sofistic pentesters)
- —Continuous Sofistic Red Team
- Confianza y experiencia
- AI Ready for LLMs (JSON-LD, sitemap, llms.txt)
- UX/Trust (visible contact, VAT ID, seal)
- Verifiable seal
- Downloadable PDF report
- API access (scores, history, reports)
- —Guaranteed SLA
- —Dedicated account manager
68 automated controls audited
P
Premium
Score 90–97%
From €2,499/year
Quarterly
AI + Sofistic Pentesters
Unlimited URLs
Weekly per-page re-scan
- Seguridad técnica
- TLS 1.2+, HSTS and Certificate Transparency
- Security headers (CSP, X-Frame, COOP/COEP)
- DNS and email (SPF, DKIM, DMARC, DNSSEC)
- OWASP, CSRF and mixed content
- Attack surface and critical CVEs
- Reputation, blacklists and breaches
- Identidad y legal
- Legal identity (registry, VAT/VIES, WHOIS)
- Regulatory compliance (LSSI, DSA, WCAG)
- Privacidad y cumplimiento
- GDPR privacy (banner, policy, DPO)
- Continuous monitoring
- Manual pentesting (Sofistic pentesters)
- —Continuous Sofistic Red Team
- Confianza y experiencia
- AI Ready for LLMs (JSON-LD, sitemap, llms.txt)
- UX/Trust (visible contact, VAT ID, seal)
- Verifiable seal
- Downloadable PDF report
- API access (scores, history, reports)
- Guaranteed SLA
- —Dedicated account manager
75 automated controls audited
E
Enterprise
Score 98–100%
Custom
Continuous
AI + Sofistic Pentesters + Sofistic Red Team
Unlimited URLs
Weekly re-scan (custom configurable)
- Seguridad técnica
- TLS 1.2+, HSTS and Certificate Transparency
- Security headers (CSP, X-Frame, COOP/COEP)
- DNS and email (SPF, DKIM, DMARC, DNSSEC)
- OWASP, CSRF and mixed content
- Attack surface and critical CVEs
- Reputation, blacklists and breaches
- Identidad y legal
- Legal identity (registry, VAT/VIES, WHOIS)
- Regulatory compliance (LSSI, DSA, WCAG)
- Privacidad y cumplimiento
- GDPR privacy (banner, policy, DPO)
- Continuous monitoring
- Manual pentesting (Sofistic pentesters)
- Continuous Sofistic Red Team
- Confianza y experiencia
- AI Ready for LLMs (JSON-LD, sitemap, llms.txt)
- UX/Trust (visible contact, VAT ID, seal)
- Verifiable seal
- Downloadable PDF report
- API access (scores, history, reports)
- Guaranteed SLA
- Dedicated account manager
75 automated controls + sector-specific ad-hoc controls
Consejo de integración: coloca el widget en el header o footer global de tu web (no solo en la home). Al cargarse en todas las páginas, UareSAFE descubre y escanea automáticamente tu sitio completo, mantiene la certificación al día y detecta cambios que podrían afectar a tu puntuación.
Why are Basic and Standard so affordable?
Same technology, no consulting hours
Our AI runs the same technical tests as a human auditor — TLS/SSL scanning, OWASP Top 10 analysis, DNS verification, reputation checks — but in minutes, not days. Without consulting hours, costs drop dramatically.
The audit engine is the same across all 4 tiers
Basic and Standard run the same automated controls as Premium and Enterprise. The difference isn't what gets analyzed, but what's added on top: manual pentester testing that finds business logic vulnerabilities, privilege escalation and other vectors no scanner can detect.
When do you need Premium or Enterprise?
If your site handles sensitive data (payments, health, large-scale personal data), processes financial transactions or needs to comply with strict regulations (PCI-DSS, high-level ENS), Sofistic's manual testing catches what automation can't. The Enterprise red team simulates real persistent attacks — not a one-off scan.
No lock-in · Results in less than 72h for Basic/Standard