One complete governance suite to stay in control!

Microsoft 365 users in your tenant Only active/enabled users with Microsoft 365 license. Disabled accounts, shared mailboxes, resources, external users, and guests don’t count.

Subscription term

Monthly AnnualSave 2 months!

Currency

Essential

per Try yourself

billed annually

Start 30 day trial

Schedule a demo

Get detailed tenant insights, report and act on them

All you need to get started

Service Inventory
- Microsoft 365,
- Teams,
- Power Automate,
- Power Apps,
- SharePoint,
- OneDrive,
- Exchange,
- Yammer,
- Azure Active Directory
Reports & Dashboards
- Report templates
- Build custom reports
- Share reports
Cloud Maintenance
- Manual actions
- Bulk actions
- Export inventory

Professional
Popular

per Try yourself

billed annually

Start 30 day trial

Schedule a demo

Monitor compliance, manage resource lifecycle and automate governance

Everything in Essential +

Compliance Monitoring
- 100+ policy templates
- Build custom policies
- Track compliance history
Lifecycle Management
- Manage sprawl
- Simplify user off-boarding
- Control file sharing
- Secure external access
Governance Automation
- Automation templates
- Build custom automations
- Automate tenant management
- Scale by involving endusers
- Integrate 3rd party services
Cloud Cost Optimisation
- Automate license management
- Reduce storage costs

Enterprise

Coming soon!

Talk to us

Schedule a demo

Prevent chaos, keep your tenant secure and delegate management

Everything in Professional +

Provisioning
- Teams
- SharePoint
Permission Management
- Users
- Groups
- Teams
- SharePoint
- OneDrive
- Power Apps
- Flows
Access Reviews
- Automate review process
- Adhoc or on schedule
- Involve Content Owners
- Audit changes
Tenant Segmentation
- Create virtual sub-tenants
- Limit inventory access
- Delegate governance

Add-ons

SharePoint/OneDrive Files & Folders

Additionally scans all SharePoint and OneDrive Files & Folders with their metadata. This add-on enables all item-level permissions in permission reports in the Enterprise plan.
all plans

Get in touch

Self-hosting

Host Rencore Governance entirely yourself in your own Azure subscription to give you full control over data storage and processing.
Only in Enterprise

Get in touch

Custom Azure Region

Get Rencore Governance hosted and operated by Rencore in a currently unavailable custom Azure Data Center region.
Only in Enterprise

Get in touch

Dedicated Infrastructure

Store your data in a dedicated database infrastructure for maximum performance. Recommended for large tenants (> 50k users).
Only in Enterprise

Get in touch

All Rencore Governance plans:

SOC2 & GDPR compliant
no global admin required

Quick start with 150+ templates & reports

Highly configurable but still easy to use

Umlimited
Free Support

Frequently Asked Questions

Can I try Rencore Governance for free?

Yes! You can try the full functionality of Rencore Governance for free for 30 days. Just sign up for a trial and get started with demo data in 3min. You can also connect your own tenant and work with live data once it has been gathered.

What counts as Microsoft 365 user?

Every user in the connected Microsoft 365 tenant needs to be licensed for Rencore Governance if all of the following conditions are met:

The user account is active/enabled
The user account has any Microsoft 365 or Office 365 license assigned

Disabled accounts, external users and Exchange resources are not considered as licensed user.

Are there any additional infrastructure and service costs?

No, the SaaS version of Rencore Governance includes the service fee, infrastructure, updates, support and onboarding to give you full cost transparency.

For self hosting Rencore in your own Azure subscription, an additional annual service fee is applied. Also the infrastructure costs are not included and depend on how you setup and scale it.

Are there discounts for Frontline and Academic users?

Yes, Frontline worker users (Fx license) and Academic users (Ax licenses) are discounted. Please contact our sales team directly to receive an individual quote.

Is the maximum size of the Microsoft 365 tenant limited?

No, Rencore Governance can scan any sized Microsoft 365 tenant, the largest we currently scan has > 300k users.

Because Rencore is bound to the API limits imposed by Microsoft, scanning of all services takes longer the larger the tenant gets. By configuring which data to be retrieved and the frequency the data should be updated, you can balance this to your individual needs.

Is Rencore Governance secure?

Yes! Rencore Governance was built from the start with the highest security standards in mind to comply with the requirements of our enterprise and government customers around the world.

Rencore is SOC2 accredited, compliant to ISO27001 and GDPR and continuously monitored and audited.

Infrastructure:
The Rencore Governance infrastructure is hosted on Microsoft Azure and passes all regulatory compliance checks and security controls (Azure CIS 1.1.0, PCI DSS 3.2.1, SOC TSP, ISO 27001).

Database:
Rencore Governance is using a no-SQL database and therefore has no inherent risk of injection attacks on SQL-type databases. Your data can be hosted in any available Microsoft Azure datacenter.

Encryption:
All information is encrypted. Azure Storage Accounts have built-in support for encryption at rest, and in-transit. In addition to this, we add another layer of cryptographic AES 256-bit industry-standard encryption around the data before it is transmitted to the storage. All transmissions from the application to the end-user are SSL encrypted. All keys are securely stored in Azure Key Vault.

Application:
The application is automatically tested against OWASP issues ensuring resilience against those threats. The codebase is automatically scanned with vulnerability scanners and security analyzers during the build.

Authentication:
Rencore Governance uses Azure AD applications. Customers consent to these AAD apps to grant the Rencore Platform access to the data required to perform analysis and monitoring. Customers can at any point revoke the App-Only or Delegated permissions granted to our applications. Rencore never asks for or stores any usernames or passwords.

Rencore does not require Global Administrator Permissions in Microsoft 365.

Detailed security information about the various components and the measures that we take to ensure the safety of our customers’ data can be found in our online documentation.

For specific questions and audit reports please reach out to our team.

Are there any usage limitations?

No, you can use Rencore Governance with one or multiple tenants of any size.

Each connected Microsoft 365 tenant requires its own subscription.
Multiple tenants within an organisation can be grouped into a “workspace” to simplify management, but it is also possible to create separate workspaces for each single tenant to separate them completely.

Does Rencore support multi-geo tenants?

Yes, Rencore Governance can analyze multi-geo environments.

Does Rencore support GCC & GCC High?

Yes, Rencore Governance can be self-hosted in your own Azure subscription in GCC and GCC High. Microsoft 365 service and feature limitations in GCC and GCC high also apply to Rencore Governance.

Rencore Governance as a SaaS is only available in the public cloud.

As MSP can I manage multiple tenants?

Yes, Rencore Governance is multi tenant capable and separates tenant connection from user authentication to give you maximum flexibility.

You can also export/import configuration from one environment to another to streamline your governance practice.

Can I host Rencore Governance in my own Azure subscription?

Yes, the entire Rencore Governance solution can also be hosted by yourself or your managed service provider (MSP)/Partner in your own Azure subscription. Self-hosting is only available will require additional installation and onboarding fees.

Infrastructure costs are not included in the licensing fee for self-hosted installation.

Do you offer a monthly subscription?

Yes, you can subscribe to Rencore Governance (SaaS) monthly via the Azure Marketplace for the Essential and Professional Plans. Monthly billing is 20% more costly than annual billing. When purchasing directly from Rencore, subscriptions are annual or multi-year, please contact our sales team to learn more.

Are there any maintenance or onboarding fees?

No, for the Rencore hosted plans (SaaS) there are no maintenance or additional onboarding fees. Unlimited support and software updates are included with your subscription.

Can I purchase a subscription without a credit card?

Absolutely! If you prefer to pay via wire transfer, please contact our sales team directly.

How do I renew my subscription?

We recommend that you renew your subscription directly through my.rencore.com. or through the account & billing settings within Rencore Governance. If you haven’t cancelled your subscription the license is renewed automatically. For any additional questions, please contact our sales team.

What new Rencore Governance Features and Services can I expect?

Please take a look at our Rencore Governance product roadmap to get a better understanding of what we are working on.

Trusted by the world’s leading organizations
helping them keep control over their Microsoft 365 environments

Rencore Governance is here!

Start a 30-day Free Trial and see for yourself how easy implementing a governance plan can be.

Still have questions? Talk to us now by clicking the chat icon on the right, or reach out via the button below.

Cookie	Duration	Description
cf_use_ob	past	Cloudflare sets this cookie to improve page load times and to disallow any security restrictions based on the visitor's IP address.
cookielawinfo-checkbox-advertisement	1 year	Set by the GDPR Cookie Consent plugin, this cookie is used to record the user consent for the cookies in the "Advertisement" category .
cookielawinfo-checkbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
CookieLawInfoConsent	1 year	Records the default button state of the corresponding category & the status of CCPA. It works only in coordination with the primary cookie.
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.
__cfruid	session	Cloudflare sets this cookie to identify trusted web traffic.
__cf_bm	30 minutes	This cookie, set by Cloudflare, is used to support Cloudflare Bot Management.

Cookie	Duration	Description
ai_session	30 minutes	This is a unique anonymous session identifier cookie set by Microsoft Application Insights software to gather statistical usage and telemetry data for apps built on the Azure cloud platform.
ai_user	1 year	A unique user identifier cookie, set by Microsoft Application Insights software, that enables counting of the number of users accessing the application over time.
AnalyticsSyncHistory	1 month	No description
browser_id	5 years	This cookie is used for identifying the visitor browser on re-visit to the website.
CLID	1 year	Clarity (MS)
CONSENT	16 years 2 months 24 days 16 hours	YouTube sets this cookie via embedded youtube-videos and registers anonymous statistical data.
hubspotutk	1 year 24 days	This cookie is used by HubSpot to keep track of the visitors to the website. This cookie is passed to Hubspot on form submission and used when deduplicating contacts.
MicrosoftApplicationsTelemetryDeviceId	1 year	Microsoft sets this cookie to install a unique device ID that is used to track how users behave and interact with the Microsoft application on the device.
MS0	30 minutes	This cookie is set by Microsoft to identify a particular session.
MSFPC	1 year	This cookie is set by Microsoft to recognize unique web browsers that visit Microsoft sites. It is used for advertising, site analytics, and other operational purposes.
original_req_url	past	No description
Rencore Analytics	never	Analytics
visitorId	1 year	ZoomInfo sets this cookie to identify a user.
_cfuvid	session	No description
_clck	1 year	Clarity (MS)
_clsk	1 day	Microsoft Clarity - Analytics
_ga	2 years	The _ga cookie, installed by Google Analytics, calculates visitor, session and campaign data and also keeps track of site usage for the site's analytics report. The cookie stores information anonymously and assigns a randomly generated number to recognize unique visitors.
_gat_UA-77273030-1	1 minute	A variation of the _gat cookie set by Google Analytics and Google Tag Manager to allow website owners to track visitor behaviour and measure site performance. The pattern element in the name contains the unique identity number of the account or website it relates to.
_ga_Z5LR216TRD	2 years	This cookie is installed by Google Analytics.
_gcl_au	3 months	Provided by Google Tag Manager to experiment advertisement efficiency of websites using their services.
_gid	1 day	Installed by Google Analytics, _gid cookie stores information on how visitors use a website, while also creating an analytics report of the website's performance. Some of the data that are collected include the number of visitors, their source, and the pages they visit anonymously.
_uetsid	1 day	This cookies are used to collect analytical information about how visitors use the website. This information is used to compile report and improve site.
__hssrc	session	This cookie is set by Hubspot whenever it changes the session cookie. The __hssrc cookie set to 1 indicates that the user has restarted the browser, and if the cookie does not exist, it is assumed to be a new session.
__hstc	1 year 24 days	This is the main cookie set by Hubspot, for tracking visitors. It contains the domain, initial timestamp (first visit), last timestamp (last visit), current timestamp (this visit), and session number (increments for each subsequent session).

Cookie	Duration	Description
ANONCHK	10 minutes	The ANONCHK cookie, set by Bing, is used to store a user's session ID and also verify the clicks from ads on the Bing search engine. The cookie helps in reporting and personalization as well.
bscookie	2 years	This cookie is a browser ID cookie set by Linked share Buttons and ad tags.
fr	3 months	Facebook sets this cookie to show relevant advertisements to users by tracking user behaviour across the web, on sites that have Facebook pixel or Facebook social plugin.
IDE	1 year 24 days	Google DoubleClick IDE cookies are used to store information about how the user uses the website to present them with relevant ads and according to the user profile.
li_gc	2 years	No description
li_sugr	3 months	LinkedIn InsightTag
muc_ads	2 years	Twitter set this cookie to collect visitor navigation data to optimise ad relevance.
MUID	1 year 24 days	Bing sets this cookie to recognize unique web browsers visiting Microsoft sites. This cookie is used for advertising, site analytics, and other operations.
NID	6 months	NID cookie, set by Google, is used for advertising purposes; to limit the number of times the user sees an ad, to mute unwanted ads, and to measure the effectiveness of ads.
personalization_id	2 years	Twitter sets this cookie to integrate and share features for social media and also store information about how the user uses the website, for tracking and targeting.
SRM_B	1 year 24 days	Microsoft Bing Ads
test_cookie	15 minutes	The test_cookie is set by doubleclick.net and is used to determine if the user's browser supports cookies.
UserMatchHistory	1 month	Linkedin - Used to track visitors on multiple websites, in order to present relevant advertisement based on the visitor's preferences.
VISITOR_INFO1_LIVE	5 months 27 days	A cookie set by YouTube to measure bandwidth that determines whether the user gets the new or old player interface.
YSC	session	YSC cookie is set by Youtube and is used to track the views of embedded videos on Youtube pages.
yt-remote-connected-devices	never	YouTube sets this cookie to store the video preferences of the user using embedded YouTube video.
yt-remote-device-id	never	YouTube sets this cookie to store the video preferences of the user using embedded YouTube video.
yt.innertube::nextId	never	This cookie, set by YouTube, registers a unique ID to store data on what videos from YouTube the user has seen.
yt.innertube::requests	never	This cookie, set by YouTube, registers a unique ID to store data on what videos from YouTube the user has seen.
_fbp	3 months	This cookie is set by Facebook to display advertisements when either on Facebook or on a digital platform powered by Facebook advertising, after visiting the website.
_uetvid	1 year 24 days	Bing Ads

Spring-clean your Microsoft 365

The life-changing magic

of tidying up your tenant!

Spring-clean your Microsoft 365

The life-changing magic

of tidying up your tenant!

Microsoft 365 Governance made easy!

One complete governance suite to stay in control!

Essential

Professional
Popular

Enterprise

Add-ons

SharePoint/OneDrive Files & Folders

Self-hosting

Custom Azure Region

Dedicated Infrastructure

All Rencore Governance plans:

SOC2 & GDPR compliant
no global admin required

Quick start with 150+ templates & reports