External reviews
1,085 reviews
from
and
External reviews are not included in the AWS star rating for the product.
Drata is user friendly with great customer service!!!
What do you like best about the product?
I love that Drata syncs well with our workspace, most users dont even know Drata exists past their onboarding process. It doesn't slow down your computer even though it runs in the background. No need to spend hours implementing it, once its connected to your workspace all your users will automatically be connected!!!
Best part of all - their customer service runs round the clock, shout out to Terrious!!!!
Best part of all - their customer service runs round the clock, shout out to Terrious!!!!
What do you dislike about the product?
TBH, I sometimes have trouble reopening old chats that I by mistake closed...
What problems is the product solving and how is that benefiting you?
We need a reliable and trust worthy platform to get Soc and HIPAA compliance
Great compliance tool, although a little pricey
What do you like best about the product?
Drata has streamlined our security complance journey and made it easy to understand where our gaps are.
What do you dislike about the product?
The main downside for us as been the cost involved, additionally, there is limited support during our business hours as Drata are US based and we're in Australia, so things happen a little slowly.
What problems is the product solving and how is that benefiting you?
Drata and the connections to our services allow for a large amount of automation and gap anaysis, this has saved us a lot of time and manual checks.
Made our ISO certification much easier
What do you like best about the product?
- Predefined policy templates for ISO
- Drata Agent for automatical compliance checks
- Automated monitoring for controls
- Special access for Auditors makes certification much easier
- Integration with many tools (Atlassia, AWS, Azure, etc)
- Customer support answer quite fast
- Drata Agent for automatical compliance checks
- Automated monitoring for controls
- Special access for Auditors makes certification much easier
- Integration with many tools (Atlassia, AWS, Azure, etc)
- Customer support answer quite fast
What do you dislike about the product?
- No open info about prices
- Additional features are quite expensive
- Additional features are quite expensive
What problems is the product solving and how is that benefiting you?
Drata provides structured approach to keep all necessary documents, policies and controls for ISO 27001 in one place.
Seamless Compliance Management with Exceptional Support
What do you like best about the product?
We’ve been impressed by how intuitive and user-friendly Drata’s platform is. The onboarding process has been a breeze, and the step-by-step guidance helped us quickly set up compliance controls without feeling overwhelmed. The integrations with our existing tools (like AWS, Google Workspace, and Slack) were straightforward, and being able to continuously monitor our compliance status in real time has made our lives much easier.
Another standout has been their customer support. We recently set up a custom domain for our Public Trust page, and Drata’s team (specifically Christobal) was very responsive and knowledgeable, helping us troubleshoot DNS records in real time. Their attention to detail and willingness to go the extra mile made the entire process stress-free.
Another standout has been their customer support. We recently set up a custom domain for our Public Trust page, and Drata’s team (specifically Christobal) was very responsive and knowledgeable, helping us troubleshoot DNS records in real time. Their attention to detail and willingness to go the extra mile made the entire process stress-free.
What do you dislike about the product?
While Drata’s feature set is robust, there is a slight learning curve when it comes to fully leveraging all of its advanced features. Also, one specific area for improvement is the Trust Center requests workflow. We’d love to see tighter integration with tools like Slack—for instance, automatic notifications or messaging capabilities for incoming Trust Center requests so our team can respond quickly without leaving our primary communication tool.
What problems is the product solving and how is that benefiting you?
Drata is helping us centralize and streamline our compliance processes across multiple frameworks—including CCPA, GDPR, and SOC 2—so we no longer have to juggle multiple, disjointed tools or spreadsheets. By automating evidence collection and providing real-time monitoring of our controls, Drata saves us significant time and resources while ensuring we remain audit-ready. This unified approach not only reduces our operational overhead but also boosts trust with customers who need transparency into our compliance posture.
A complete product offering more tools and features tailored for a GRC program.
What do you like best about the product?
Customer support and seamless integration across all app components, offering plenty of useful features for us.
What do you dislike about the product?
The UI isn’t intuitive and needs updates to make it more engaging.
What problems is the product solving and how is that benefiting you?
GRC, SOC 2, Vendor Managaement, Risk Management and more
Beautifully simple and effective for reporting.
What do you like best about the product?
The ease of find the information I need that the agent gathers. Drata made very donting task of a SOC2 audit and made gathering and reporting on each of the measures extremely managebale.
What do you dislike about the product?
Some of the documentation could be clearer when explain or breakdown what is needed to meet the requirements.
What problems is the product solving and how is that benefiting you?
Reporting. Drata helps to gather device information, make sure usrs are accepting policies, helps to audit internal devices and make sure usrs are accurately assigned and addressed.
Great product, Even Better Team
What do you like best about the product?
The automation, so nice to be able to keep track of all evidence within one platform and be able to assign owners, set expiration dates and integrate with a multitude of our internal tools. The support staff is even better, always willing to answer questions and answering back within 4 hours.
What do you dislike about the product?
I wish it had more customization with the monitors it does have as not all organizations have the same configurations and it would be easier to create the connections yourself with the tools within our cloud based host.
What problems is the product solving and how is that benefiting you?
Drata streamlines our compliance process by automating the collection and organization of evidence required for SOC 2 Type II and HIPAA audits, saving us significant time and resources.
It enhances our ability to monitor and maintain continuous compliance, reducing the risk of errors or missed requirements.
With Drata, we have improved transparency and efficiency in demonstrating compliance to auditors and stakeholders, enabling us to focus on core business operations.
It enhances our ability to monitor and maintain continuous compliance, reducing the risk of errors or missed requirements.
With Drata, we have improved transparency and efficiency in demonstrating compliance to auditors and stakeholders, enabling us to focus on core business operations.
Aprio January 2025 Review
What do you like best about the product?
Client preparedness for audits. Ease of access through the auditor portal.
What do you dislike about the product?
Most clients believe that we gain efficiencies by obtaining documentation through a GRC platform, but for an auditor, it is really just an different documentation repository. This isn't specific to Drata, it applies broadly. However, integration with FieldGuide should change this.
What problems is the product solving and how is that benefiting you?
Drata helps clients better prepare audit artifacts and have more documenation available the first day of fieldwork.
Speeding up Compliance paired with great customer success
What do you like best about the product?
Automation, policy templates and monitoring
What do you dislike about the product?
The auditor experience could be improved. Sometimes the auditors arent really tech savyy and cant find evidences.
Giving them access read only to my complete instance was the way to go!
Giving them access read only to my complete instance was the way to go!
What problems is the product solving and how is that benefiting you?
Speeding up tremendously the security and compliance posture for SOC2
A great platform that is growing with our capabilities and maturity
What do you like best about the product?
Being able to manage 8 different security compliance frameworks on one platform with only one FTE! The customer sucess team is also great and very much focused on building a long-term relationship...this was the clincher for us. (A big shout out to Alex and Aoife)
What do you dislike about the product?
Some capabilites are maturing slower than others (such as risk and asset management) .
What problems is the product solving and how is that benefiting you?
Managing multiple compliance frameworks, as well as general GRC activities, with limited resources.
showing 51 - 60