Chasing CMMC on a small-team budget.
A 15-person defense contractor chasing CMMC certification. You need compliant email and file storage that fits a 15-person budget.
Fig. 01 · Authorization Boundary
IRONKEEP gives regulated teams one place to work, protect CUI, and prepare evidence for CMMC review.
Private beta · Q2 2026
Receive product updates and the CMMC Level 2 readiness checklist.
Product 01
Email, calendar, and contacts for regulated teams.
Secure work email
Send and receive protected email for CUI, FCI, and internal team communication.
Threat checks before delivery
Messages, links, and attachments are screened before they reach an inbox.
Bring your domain
Move over with guided domain setup, mailbox import, and familiar email workflows.
Calendar and contacts
Schedule meetings, manage contacts, and keep collaboration inside the same boundary.
Compliance labels
CUI, FCI, and internal markings stay visible to users and assessors.
Team mailbox controls
Route, filter, and manage shared mail without sending work outside IRONKEEP.
Product 02
Files, docs, sharing, and version history.
Protected files and docs
Store controlled files, documents, and spreadsheets inside the IRONKEEP boundary.
Easy to organize
Use folders, labels, previews, and search to keep work easy to find.
Controlled sharing
Share files with the right people using clear view, comment, and edit access.
Version history
Restore earlier versions when a file changes or gets overwritten.
Upload scanning
Scan uploads for malware before risky files enter shared work.
Product 03
Documents and spreadsheets with real-time collaboration.
Real-time co-editing
Work on documents together in real time, with presence indicators and inline comments.
Document editor
Create and edit rich text documents without leaving the IRONKEEP suite.
Spreadsheet editor
Build and edit spreadsheets with formulas, tables, and shared data.
Presentation editor
Create and present slides, with import and export for standard formats.
Version history
See earlier versions of any document and restore them when needed.
Comments and suggestions
Leave inline comments, suggest edits, and resolve feedback without switching tools.
Product 04
Team chat that stays inside the compliance boundary.
Channels and DMs
Keep project conversations, private channels, and direct messages in scope.
Threads and mentions
Discuss decisions clearly with threads, mentions, edits, and unread state.
Secure attachments
Share files in chat without sending work outside the suite.
Searchable conversations
Find the channels, threads, and messages you are allowed to see.
Notifications that fit work
Use mentions, unread state, and digests to keep conversations moving.
Inside one suite
No separate chat vendor, identity setup, or assessor workflow to manage.
Product 05
Audio, video, and screen share inside the boundary.
Calls from calendar or chat
Start or join a call from a calendar event in IRONKEEP MAIL or a channel or DM in IRONKEEP CHAT.
Screen share with roles
Audio, video, and screen share with host, presenter, and attendee roles.
External guests
Invite-only guest access to scheduled meetings, with domain allowlists and expiring links. No accounts needed.
Encrypted recording
Cloud recordings stay in encrypted, tenant-scoped storage inside the boundary.
Meeting chat under DLP
In-meeting chat is screened by your sensitive data rules before messages send.
Meeting actions audited
Joins, host actions, and recordings write sanitized events to an immutable trail.
Status · June 2026
Fig. 02 · Security stack
Your mail, files, docs, chat, calendar, and contacts stay protected at every layer.
Data at rest
Your organization's data is encrypted with keys scoped to your account.
Sensitive fields
Subjects, addresses, names, and events are encrypted before storage.
Device cache
Local browser state stays protected behind a user PIN.
Each organization stays separate across access, storage, encryption, and identity.
Access
Every request is limited to the caller's organization.
Storage
Files and stored content stay tied to your organization.
Keys
One organization's keys cannot unlock another organization's data.
Identity
Organization access comes from IRONKEEP identity or your trusted identity provider.
Zero operator access to tenant content.
IRONKEEP staff can manage organization records, tenant metadata, console-only accounts, and infrastructure. They cannot create product users, read decrypted tenant content, run tenant decrypt operations, or generate tenant search tokens.
Migration path
Sign up.
Create your organization and add the people who need access.
Import email and files.
Import standard mailbox exports. Bring your domain, mailboxes, and calendars.
Prepare evidence.
Use built-in controls, logs, and exports to support your assessment work.
Who it's for
Chasing CMMC on a small-team budget.
A 15-person defense contractor chasing CMMC certification. You need compliant email and file storage that fits a 15-person budget.
Split tools, one deadline.
Commercial O365 for email, Dropbox for files. C3PAO assessment in 6 months. You need both systems compliant under one roof.
Outgrowing consumer tools.
You're bidding on contracts that require CMMC Level 2. Time to get compliant without juggling three vendors.
See also
FAQ
United States only, on FedRAMP Moderate authorized cloud infrastructure, administered by US citizens. Tenant-scoped encryption keys and tenant isolation keep other tenants and IRONKEEP staff from reading tenant content.
CMMC Level 2, NIST 800-171, DFARS 252.204-7012, and ITAR. FedRAMP Moderate authorization work is in progress. Evidence exports are designed for assessor review.
Hours, not months. IRONKEEP imports standard mailbox exports and supports guided migration for domains, mailboxes, calendars, and files.
Private beta is opening in stages. Join the list for product updates and checklist access.
No. Your organization still owns its CMMC assessment. IRONKEEP is designed to provide compliant tooling, control mapping, and evidence to support that assessment.
No. Zero operator access to tenant content is enforced by explicit deny rules on decrypt operations. IRONKEEP staff cannot read decrypted tenant content, run tenant decrypt operations, create product users, or generate tenant search tokens.
Private beta
Join the beta list and receive the CMMC Level 2 readiness checklist.
No sales call required.
Private beta
Get product updates and the CMMC Level 2 readiness checklist.
No sales call required.