Talk to us!

Book a complimentary call to get an expert opinion on where you are on your compliance journey.

Book a Discovery Call

Build a secure, compliant product
backed by expert penetration testing.

Our CREST-approved partners assess your systems, validate your defences, and provide clear remediation guidance to help you prove security and meet frameworks like DTAC, ISO 27001, HIPAA and more.

Book a discovery call

• Trusted by the World's Leading Healthtech Innovators •

Prove your product is
secure and compliant.

Our penetration testing service simulates real-world attacks to identify and prioritise vulnerabilities across your apps, APIs, and infrastructure.


Each test is led by CREST-approved security specialists, providing clear, actionable findings you can take straight to your engineering team or use as compliance evidence for DTAC, ISO 27001, HIPAA, or GDPR.

  • Conduct comprehensive penetration testing across web, mobile, and cloud environments.
  • Deliver detailed, prioritised reports with practical remediation guidance.
  • Re-test fixes and validate improvements for ongoing assurance.
Book a Discovery Call

Bake security into every stage of your solution’s development.

Led by Accredited Experts

Our penetration tests are conducted by experienced, CREST-approved professionals who specialise in healthcare and regulated environments.

They’ll identify weaknesses across your applications, APIs, and infrastructure and help you understand how to fix them.

Actionable, Not Abstract

You’ll receive a clear, prioritised remediation report, backed by guidance on how to address each issue effectively.

Every finding includes context, risk rating, and practical next steps, so your teams understand not just what to fix, but how to strengthen your overall security posture.

Assurance for DTAC and beyond

Every report includes traceable evidence of security testing suitable for inclusion in your DTAC submission or ISO 27001 documentation.

We also provide optional re-testing and validation, so you can prove improvements and maintain confidence over time.

Compliance made easy, clients left beaming.

Discover how companies like yours have automated compliance, unlocked new markets, and ditched the compliance chaos.

Watch our Client Feedback
Dr Monika Vekeria
Co-Founder, messageGP
Watch our Client Feedback
Dr Giovannie Jean-Louis
Founder, Probr

“Squirrel™ guided us in the right direction and was very useful. It clarified and simplified the whole process, breaking compliance down into into easy, manageable tasks."

Duncan Ryan
CTO, Cherub Health
Watch our Client Feedback
Dr Benjamin D Stride
Founder, thinkADHD
Watch our Client Feedback
Uzay Macar
Co-Founder & CTO, Heba
Watch our Client Feedback
Elisabeth Honinx
Product Manager, Moonbird
Watch our Client Feedback
John Pelan
Product Manager, Coloplast
Watch our Client Feedback
Eddie Pease
Engineering Lead, SANOME

"It was great to work with Acorn Compliance. They were able to deliver our scope of work to time and fitted into the team seamlessly. I could not recommend them any more and we will be certainly using them for more projects."

Krishan Ramdoo
CEO - Tympa Health

"With a professional, reliable and extremely efficient approach, Acorn Compliance have assisted us in navigating the complex and heavily regulated healthcare market, to ensure DocComs attained all the required regulatory compliance and was accessible to purchase for the NHS."

Roseanna Jaggard
CEO, DocComs

The right plan for every stage of your compliance journey.

Start with what you need today and scale to what tomorrow demands.
Join hundreds of digital health innovators simplifying compliance with Squirrel™ 2.0

Monthly
Annually
Monthly
Annually

Starter Plan

From

£249

+ VAT
per month
Get Starter
Qualifying criteria:
Up to 3 employees
No funding received (Except accelerator funding)
Pre-revenue
Agree to act as a case study
Full access to our automated compliance platform to get you DTAC compliant 10x faster
Coverage across the entire NHS DTAC framework including Cyber Essentials and DSPT
AI coach with regulatory intelligence to guide your compliance journey
Live chat support on any DTAC question
Real-time compliance notifications and alerts to help you stay compliant
Seamless sharing of your DTAC evidence with the NHS
Minimum 12 month subscription

Standard Plan

From

£370

+ VAT
per month
Get Standard
Full access to our automated compliance platform to get you DTAC compliant 10x faster
Coverage across the entire NHS DTAC framework including Cyber Essentials and DSPT
Cyber Essentials external assessment fee included
Simplified DCB 0129 clinical safety hazard log generation
AI coach with regulatory intelligence to guide your compliance journey
Live chat support on any DTAC question
Real-time compliance notifications and alerts to help you stay compliant
Validation of your DTAC evidence by our expert team
Expert-guided support to introduce a culture of compliance into your organisation
The industry’s only DTAC warranty with our recognised seal of compliance
Seamless sharing of your DTAC evidence with the NHS
Minimum 12 month subscription
Recommended

Pro Plan

From

£970

+ VAT
per month
Get Pro
Everything in Squirrel™ Standard, plus:
A named Clinical Safety Officer will be assigned to you for the duration of your 
Squirrel™ contract
Your CSO will deliver a full hazard assessment workshop, risk score all identified hazards in line with the DCB 0129 standard and deliver all required artefacts to satisfy the clinical safety element of DTAC
An assessment and output report on the medical device status of your innovation
The CSO will be available for a set time per month to assist with revisions to your Clinical Safety documentation as your product evolves
Minimum 12 month subscription
Add – ons
Penetration testing
Accessibility audit
Medical Device Regulations
ISO 27001
Bespoke regulatory advice
Most Popular

Starter Plan

From

£2,499

+ VAT
/pcm*
+ VAT
Get Starter
Get Starter
Qualifying criteria:
Up to 3 employees
No funding received (Except accelerator funding)
Pre-revenue
Will provide honest feedback on our product and act as a reference client (Agree to act as a case study)
Full access to our automated compliance platform to get you DTAC compliant 10x faster
Coverage across the entire NHS DTAC framework including Cyber Essentials and DSPT
AI DTAC coach to guide your DTAC journey
Live chat support on any DTAC question
Real-time compliance notifications and alerts to help you stay compliant
Seamless sharing of your DTAC evidence with the NHS
Minimum 12 month subscription
Save 10% WHEN PAID ANNUALLY

Standard Plan

From

£3,996

+ VAT
/pcm*
Get Standard
Full access to our automated compliance platform to get you DTAC compliant 10x faster
Coverage across the entire NHS DTAC framework including Cyber Essentials and DSPT
Cyber Essentials external assessment fee included
Simplified DCB 0129 clinical safety hazard log generation
AI DTAC coach to guide your DTAC journey
Live chat support on any DTAC question
Real-time compliance notifications and alerts to help you stay compliant
Validation of your DTAC evidence by our expert team
Expert-guided support to introduce a culture of compliance into your organisation
The industry’s only DTAC warranty with our recognised seal of compliance
Seamless sharing of your DTAC evidence with the NHS
Minimum 12 month subscription
Save 10% WHEN PAID ANNUALLY

Pro Plan

From

£10,476

+ VAT
/pcm*
Get Pro
Everything in Squirrel™ Standard, plus:
A named Clinical Safety Officer will be assigned to you for the duration of your 
Squirrel™ contract
Your CSO will deliver a full hazard assessment workshop, risk score all identified hazards in line with the DCB 0129 standard and deliver all required artefacts to satisfy the clinical safety element of DTAC
An assessment and output report on the medical device status of your innovation
The CSO will be available for a set time per month to assist with revisions to your Clinical Safety documentation as your product evolves
Minimum 12 month subscription
Save 10% WHEN PAID ANNUALLY

*pcm = Per Calendar Month

With every package you have the option to purchase add on services as needed:

Penetration testing
Accessibility audit
Medical Device Regulations
ISO 27001
Consultancy done differently
1-to-1 Strategy Session
Fractional CCO
AI Compliance

You could get compliance assistance from a number of places.

Other compliance consultants

Can guide you through audits and help with one or two frameworks...

But

They’re often costly, hard to scale, and rarely equipped to manage the complexity of healthtech.

Other compliance platforms

Can automate evidence collection and tick-box tasks for traditional frameworks...

But

They don’t cover the full scope of healthcare frameworks or include expert regulatory support.

Reasons Squirrel™ 2.0 is the best of both worlds:

As smart as a consulting company. As affordable as a compliance platform. Better than both.

Backed by the most knowledgeable experts across every compliance area.
Embeds a culture of compliance, so you don’t keep running into regulatory roadblocks.
Built for healthtech & the NHS (DTAC, DCB 0129 HIPAA, MDR and ISO standards).
Guarantees your product gets approved by the NHS, with the industry’s only recognised seal of compliance.
Book a Discovery Call

And we warranty all of your evidence, meaning...

If your Squirrel™ generated evidence file isn’t accepted by any reviewing body, we will remedy all of it free of charge!
We can even work with the procuring authority to help them fully understand your evidence file and get your assessment done in time!
ALL of this work will be free of charge and completed within 5 working days.

No more compliance delays.
Ditch the paperwork and launch lightning-fast.

Let Squirrel™ 2.0 handle compliance for you, 10x faster. Let’s get on a call, and we’ll show you how.

Book a Discovery Call