compliance.tf
Sign inBuy with AWS

Terraform Compliance
for Cloud-Native Enterprise

Make it hard impossible to deploy non-compliant resources, and cut maintenance by standardizing on proven, supported building blocks.

Buy with AWSStart Free Trial

Choose Your Plan

Start free. Lock in early access pricing before prices increase. Enterprise benefits included as they launch.

Free Trial

Get started with compliance automation

$0/ 30 days
  • All compliance frameworks
  • 1 AWS account
  • Compliant S3 bucket module
  • Email support
Start Free with AWSNo AWS Account? Start Here
Most Popular

Pro

Launch offer ends March 1, 2026. After that, standard pricing applies.

$100/ year
  • All compliance frameworks
  • Up to 5 AWS accounts
  • All Terraform AWS modules
  • Priority email support
  • Influence roadmap priorities
Buy with AWS

Custom

For organizations with advanced needs

Custom/ contact sales
  • All compliance frameworks
  • Unlimited AWS accounts
  • All Terraform AWS modules
  • Priority email & Slack support
  • Custom module development
Contact Sales

For engineering, platform, and DevOps teams

Faster delivery, consistent modules, and built-in guardrails without changing workflows.

8+ years of battle-tested modules

Built on Terraform AWS modules used in billions of provisions. Now offered as a governed, supported service.

Familiar foundations, enforced compliance

Keep your existing workflows while gaining automated guardrails. No learning curve for teams already using Terraform.

Flexible and customizable

Tailor policies and conventions to your business needs. Adapt quickly to new frameworks and internal standards without rework.

CI/CD native integration

Works seamlessly with GitHub Actions, GitLab CI, and any pipeline. No agents or sidecars required.

For security, compliance, and business leaders

Risk reduction, governance, audit readiness, and predictable cost.

Turnkey governance at scale

Standardize cloud governance and quality across teams with minimal overhead. No custom tooling or policy engines required.

Secure-by-default

Guardrails prevent risky configs before they reach production. Reduce incidents and remediation by blocking misconfigurations early.

SOC 2 Type II certified

We have a valid SOC 2 Type II report, audited by Atom Assurance Services. Request access through our Trust Center.

Audit-ready in hours

Auto-generated compliance evidence for every deployment. Reduce audit prep from weeks to hours with automated reporting.

How does compliance.tf compare?

See how compliance.tf stacks up against maintaining your own compliance infrastructure.

Feature / OutcomeDIY forked
open-source		DIY with
your modules		compliance.tf
Keeps upstream updates without ongoing merge work
Same interface as terraform-aws-modules
Security controls enforced by default
Controls are hard to bypass accidentally
Non-compliant configs fail fast before apply
No need to maintain a private fork
Central governance across teams
Framework-specific policy sets (SOC 2, PCI DSS, HIPAA, CIS)
Evidence artifacts and control mappings
Consistent defaults across all modules
Fast onboarding for new teams
Predictable upgrade path
Works with existing CI pipelines
Internal engineering time requiredHighHighLow
Yes
Partial / Depends
No

Stay informed about new features

Join the mailing list for releases, new modules, and roadmap updates. No spam. Unsubscribe anytime.

Not convinced yet or dying for a feature we don't have? Send us an email — we really want to hear your feedback!

FAQ

What is compliance.tf?

Compliance.tf provides a controlled registry for Terraform modules. It automatically validates and remediates configurations so deployments meet SOC 2, HIPAA, and PCI DSS requirements and your internal policies.

What is behind compliance.tf?

Built on 8+ years of Terraform AWS modules used in billions of provisions. Now offered as a governed, supported service.

Why should I use compliance.tf?

Compliance.tf gives your team pre-approved Terraform modules that enforce the controls you choose. Each module is validated and remediated automatically so changes stay within policy before they reach the cloud. The result is faster audits, fewer findings, and a consistent security baseline. What you get: • Modules aligned to SOC 2, HIPAA, PCI DSS, CIS, and your internal policies • Guardrails that prevent noncompliant settings from being deployed • Clear control mappings and audit-ready evidence • Native Terraform workflow. No new tools to learn • No lock-in. Modules are standard Terraform and remain portable Our goal is to make noncompliant infrastructure impossible by design.

Why did we do it?

Teams waste time rebuilding guardrails and still ship misconfigurations. We built compliance.tf to make compliant-by-default infrastructure practical. You get secure defaults, enforced controls, and audit-ready evidence without slowing delivery. Even if a formal audit is not on your roadmap, you still gain a stronger baseline and fewer CSPM findings. We started with what we know best: Terraform AWS modules used at massive scale. Next, you will be able to bring your own modules. We will validate and remediate them, then serve them through a controlled registry under your policies.

How to get access to it?

Subscribe through AWS Marketplace using Buy with AWS or start a Free Trial. After subscribing, sign in to the compliance.tf console to set up your team and access the private Terraform registry. You get immediate access to the compliant S3 bucket module (more modules will be available during January 2026). See the documentation for details.