AccessiScan is a WCAG 2.1 AA website accessibility scanner and audit tool. It runs an automated scan, gives you a prioritized fix list and a VPAT 2.5 conformance report, and can produce a timestamped, hash-signed Legal Evidence Pack documenting your good-faith remediation effort. Automated checks reliably catch roughly 30-40% of WCAG issues; full conformance also needs manual testing.

How much does AccessiScan cost?

There is a free scanner that needs no account. Pro plans start at $39/month. A one-time WCAG audit plus the Legal Evidence Pack is $149. That is a fraction of enterprise platforms like Siteimprove or Level Access, which typically run $15,000-$60,000 per year.

Is AccessiScan a good alternative to Siteimprove, accessiBe, or AudioEye?

AccessiScan offers comparable automated WCAG 2.1/2.2 coverage to enterprise platforms at a far lower price, and unlike overlay widgets (accessiBe, AudioEye, UserWay) it does not sell an overlay. Overlays do not fix accessibility, and the FTC fined accessiBe $1M in 2025. AccessiScan finds the real issues, gives a remediation plan, and produces a dated record of your good-faith effort.

Does AccessiScan make my website ADA or WCAG compliant?

No tool can guarantee legal compliance. AccessiScan documents your current conformance status and your good-faith effort to remediate. Automated scanning covers the mechanical portion of WCAG; full conformance also requires manual testing with assistive technology. AccessiScan is a software tool, not a law firm, and nothing it produces is legal advice.

What should I do after receiving an ADA website demand letter?

Talk to a qualified attorney, and get a dated, objective record of your site's accessibility state. AccessiScan's one-time audit ($149) ships a Legal Evidence Pack: a timestamped, hash-signed WCAG audit with a public verification page, a 30/60/90-day remediation plan pre-filled with your issues, a draft accessibility statement, and a demand-letter response template for your attorney to adapt.

For procurement-led compliance teams

Accessibility compliance,
run as infrastructure.

Continuous WCAG 2.1 AA monitoring, version-controlled remediation, and audit-ready evidence for organizations under DOJ Title II, Section 508, EAA, and AODA obligations. Built to survive a procurement review and a DOJ Title II complaint — not to run a one-off scan.

Schedule a procurement review →See what enterprise contracts include

Compliance frameworks supported

SOC 2 on roadmapSection 508EN 301 549WCAG 2.1 AA · 2.2 AAACAAAODA

What enterprise teams are actually buying

Three jobs. None of them is "run a scan."

A scanner answers what's broken right now. A compliance team needs answers to three different questions, and those answers compound over time. Each job below maps to a framework AccessiScan is built around — not a feature toggle.

Job 1

Risk reduction

DOJ Title II · Section 508 · EAA · AODA

Public entities and federal contractors face a $50,000–$500,000 settlement range when a DOJ Title II complaint lands. AccessiScan maintains the continuous, version-controlled record of remediation that turns a complaint into a closed file rather than a consent decree.

Continuous monitoring across all monitored properties
DOJ-aligned methodology (W3C errata + 4th edition WCAG techniques)
Lawsuit-precedent flag on each violation (which criteria show up in actual settlements)

Job 2

Compliance confidence

For boards · counsel · auditors · the CIO

When the General Counsel asks 'are we covered?', a screenshot of a green dashboard isn't an answer. AccessiScan ships an evidence package that holds up: who changed what, when, on which deploy, with which test result and what remediation followed.

Audit-trail database (immutable, exportable as CSV/PDF/JSON)
VPAT 2.5 attestations on AccessiScan letterhead
Quarterly Compliance Review report co-signed with your CSM

Job 3

Ongoing remediation support

Not a one-time scan, an operating system

A scan that finds 612 violations and walks away leaves a compliance officer with a problem, not a solution. AccessiScan files Auto-Fix PRs against your repos, owns the remediation backlog as a living artifact, and re-tests on every deploy — closing the loop the scanner industry leaves open.

Auto-Fix PRs filed by AccessiScan into your VCS
Re-scan delta on every deploy (status: passing / regressed / new)
Dedicated CSM + named technical contact for remediation prioritization

Why this isn't a scanner play

A scanner closes a ticket.
Infrastructure closes the loop.

The product line below is the same in both columns. The contract, the support model, and the evidence package on the right is what makes it survive a procurement review.

DimensionScanner toolCompliance infrastructure

CadenceOne-off / on-demandContinuous · re-tests on every deploy

OutputPDF report (frozen in time)Live audit-trail database (queryable, exportable)

RemediationList of issues — your team fixes themAuto-Fix PRs filed into your VCS by AccessiScan

Coverage proofDate-stamped scanVersion-controlled history per WCAG criterion

Procurement fitJunior-IT discretionaryMSA / DPA / BAA · CSM · SLA · custom legal terms

DOJ-defensibleSnapshot evidenceContinuous evidence + remediation history

PricingPer-seat / per-scanCustom annual contract · scoped to properties + repos

BuyerEngineer / IT analystCompliance VP · CIO · General Counsel · procurement

What enterprise contracts include

Built so your procurement, security, and legal teams say yes.

Enterprise contracts at AccessiScan are scoped per organization, but every one ships with the floor below. Anything missing here, ask on the procurement review — we'll either add it or tell you exactly when it lands on the roadmap.

── Legal & procurement

MSA review (we sign your paper or ours)
DPA (Data Processing Agreement) — GDPR + CCPA aligned
BAA available (HIPAA-eligible workloads)
Net-30 / net-60 / net-90 invoice terms
Purchase order billing (no card on file required)
Custom security questionnaires (CAIQ, SIG, vendor-specific)
Indemnification + IP warranty terms
Data residency election (US / EU)

── Identity, access, audit

SSO via SAML 2.0 (Okta, Azure AD, Google Workspace, OneLogin)
SCIM provisioning · just-in-time deprovisioning
Audit log streaming (Splunk, Datadog, generic Syslog)
Role-based access control (org-admin, property-admin, viewer)
Session timeout policies + IP allowlisting
Org-wide policy enforcement (force-on for SSO, MFA, etc.)

── Service & support

Dedicated Customer Success Manager (named contact)
Quarterly Compliance Review with co-signed report
SLA tier — 99.9% uptime + tiered response time
White-glove onboarding (dedicated implementation lead)
Custom integration support (Jira, ServiceNow, Asana, GitHub Enterprise)
Priority engineering support · escalation path
Architecture review on request

── Compliance evidence

VPAT 2.5 attestation on AccessiScan letterhead
Section 508 quarterly compliance report
EN 301 549 self-assessment (EAA-aligned)
ACAA mapping (federal contractors)
Audit-trail database export (CSV / JSON / SIEM-ready)
Security questionnaires (CAIQ / SIG) on request; SOC 2 on roadmap

Procurement timeline

From discovery to live in 4 weeks.

Most enterprise SaaS quotes 8–12 weeks for a procurement cycle. Ours is built around a 4-week target because the DOJ Title II deadline doesn't care about quarter ends. Scope dependent.

Day 0
Discovery call · 30 min
We map your obligations (DOJ / Section 508 / EAA / AODA), your monitored properties, and your remediation workflow. No price quoted yet.
Day 2
Tailored quote
Sent within 48h of discovery. Includes: scoped properties, repos under remediation, SLA tier, attestations included, MSA terms.
Week 2
Security review · DPA signed
We complete your security questionnaire (CAIQ / SIG / vendor-specific) and sign your DPA + BAA where applicable.
Week 3
Procurement · PO issued
MSA finalized, PO issued, tenant provisioned. Implementation lead assigned to your account.
Week 4
Onboarding · first scan live
First continuous monitoring scan executes against your properties. Auto-Fix PR pipeline opens. CSM kickoff scheduled.

How enterprise pricing works

Custom — because enterprise scope is custom.

We don't publish enterprise pricing on this page because anchoring a number ahead of scope is misleading on both sides: the SMB tier our /pricing page lists ($39–599/mo) doesn't describe the value at enterprise scope, and a five-figure enterprise number scares off SMBs that genuinely fit /pricing.

What we can commit to: a tailored quote within 48h of the discovery call, with an itemized scope and a not-to-exceed annual figure. The factors that drive the quote:

Number of monitored properties (sites, web apps, mobile apps, PDFs)
Number of repositories under Auto-Fix PR remediation
SLA tier (99.5% / 99.9% / 99.95%)
Attestations required (Section 508, EN 301 549, ACAA, custom)
Custom integrations (Jira, ServiceNow, GitHub Enterprise, etc.)
Data residency election (US / EU)
Onboarding scope (white-glove vs self-serve)

For organizations evaluating self-service tiers (single property, one team, no procurement workflow), see /pricing — Free tier through Team ($599/mo).

Procurement FAQ

The questions our procurement-led prospects always ask first.

Are you SOC 2 certified?: Not yet — we won't claim a certification we don't hold. We follow standard security practices (encryption in transit and at rest, least-privilege access, RLS-isolated tenant data), we can share our internal security policies, and we complete vendor security questionnaires (CAIQ, SIG, custom) on request. A formal SOC 2 audit is on our roadmap; we'll share the report once it's complete rather than promise a date we can't guarantee.
Will you sign our paper, or do we sign yours?: Either. Our default MSA is enterprise-friendly (mutual indemnification, cap at 12 months fees, IP warranty included), but we redline yours just as readily. Most contracts close on customer paper.
What payment terms do you support?: Net-30 by default. Net-60 and Net-90 available for state/federal procurement and qualifying enterprise customers. Purchase orders accepted; we don't require a card on file. Wire and ACH supported. Annual contracts billed up-front or in equal quarterly installments.
How does Auto-Fix PR work with our existing GitHub Enterprise?: We install a GitHub App into the repos you scope for remediation. The app reads (to map violations to source code) and writes (to file a remediation branch + PR). You review and merge the PR like any internal contributor — we never push directly to a default branch. GitLab and Bitbucket equivalents available.
Can we run this against internal apps behind our VPN?: Yes. We deploy a self-hosted scanner runner into your VPC (or your Kubernetes cluster) that scans internal properties and ships violation telemetry to AccessiScan over an outbound TLS tunnel. No inbound firewall rules required.
What does data residency look like?: Election at contract signing: US (us-east-1, us-west-2) or EU (eu-west-1, eu-central-1). Audit-trail database, scan results, and remediation history all stay in-region. We do not replicate customer data outside the elected region.
Do you have a federal sales lead?: Federal procurement (FedRAMP-aligned tenants, GSA schedule) is on the roadmap for 2027. Today we serve federal contractors and state public entities under standard MSA + Section 508 attestations.
What happens if we churn?: Audit-trail and remediation history exportable as CSV/JSON for 12 months post-contract end. We don't hold compliance evidence hostage — that data is yours, not ours.

Schedule a procurement review

Tell us your obligations. We'll send a tailored quote in 48 hours.

30-minute discovery call to map your scope. No slide deck, no pitch — we ask questions, you decide whether the fit is real. Quote follows within 48h, with itemized scope and a not-to-exceed annual figure.

── Or contact directly

Emailenterprise@piposlab.com
CalendlyBook a 30-min discovery →

Accessibility compliance,run as infrastructure.