Know what's running on your computers — before it becomes a problem.
CITRA (Comprehensive IT Risk Assessment) helps Indian organisations understand software compliance, security indicators, and potential exposure — clearly, privately, and in rupees.
First scan completes in minutes. Detailed insights unlock after upgrade.
Already a member? Sign In →
What is CITRA?
CITRA (Comprehensive IT Risk Assessment) is an enterprise platform designed specifically for Indian organisations to proactively understand and manage software compliance and IT risk.
CITRA continuously scans computers across your organisation to identify unlicensed or high-risk software, potential piracy indicators, and security vulnerabilities. Instead of presenting complex technical findings, CITRA translates these insights into clear, rupee-based exposure estimates that business and leadership teams can easily understand.
Most organisations become aware of compliance issues only when an audit, vendor inquiry, or legal notice occurs. CITRA enables you to gain visibility early — so you can assess risk, take informed decisions, and stay in control on your own terms.
Importantly, CITRA is built with privacy and trust at its core. Your data is never sold, shared, or disclosed to software vendors, auditors, or third parties. All scans, findings, and reports remain strictly within your organisation, giving you full ownership and control over your information at all times.
What CITRA Does
Clear answers to a simple but critical question: What exactly is running on our computers — and what does it mean for the business?
Complete visibility across all systems
CITRA automatically scans every computeri in your organisation and provides a comprehensive inventory of installed software. This includes applications installed without formal IT approval, helping you understand your environment as it actually exists — not just as it was planned.
Early identification of compliance indicatorsi
CITRA reviews installed software against recognised licence records and known risk signatures. Where potential issues are detected, CITRA highlights them clearly — along with the file location — so your team can review and decide on the next steps with confidence.
Risk expressed in business terms
Instead of technical severity scores, CITRA presents findings as indicative financial exposure in Indian Rupeesi. This helps leadership teams assess impact, prioritise action, and plan remediation without needing deep technical interpretation.
Support when you need it
CITRA is more than a scanning tool. When questions arise — after a scan, during a renewal decision, or in response to an audit inquiry — our team is available to provide guidance. This is paid advisory support, delivered transparently, with no commissions, no vendor alignment, and no hidden agenda.
🔒 Your Data Stays Yours
CITRA is built with privacy and trust as first-class principles. All scan data, findings, and reports remain strictly within your organisation. CITRA does not share your information with software vendors, auditors, regulators, or third parties — ever. You retain full ownership, control, and visibility over your data at all times.
How CITRA Works
Install the agent
Install CITRA on your computers using a lightweight agent. No configuration required.
Run your first scan
CITRA scans installed software and system metadata. The first scan typically completes in a few minutesi.
Review your summary
View a clear overview of compliance indicators and indicative exposure, presented in rupees — not technical jargon.
Unlock full detail when ready
Upgrade to access machine-level details, evidence paths, and downloadable reports.
Your Data. Your Control. Our Commitment.
CITRA is designed to answer one question — and only that question: what software is running on your systems, and what does it mean for your business?
To do this, CITRA collects only the information required to perform a compliance scan, such as software names, versions, installation paths, and basic hardware details. We collect technical metadata only. CITRA does not read your documents, emails, passwords, personal files, or user content — ever.
Your scan results and reports belong entirely to you. CITRA does not share your data with software vendors, auditors, resellers, regulators, or any third party. There are no partnerships, referrals, or behind-the-scenes data exchanges.
If you choose to share a report — with a consultant, a Chartered Accountant, a legal advisor, or during a commercial discussion — that decision is always yours.
Many organisations have experienced situations where information shared informally later appeared in places it shouldn't have — during negotiations, renewals, or unexpected conversations with vendors. We understand how uncomfortable that can feel.
That is precisely why CITRA is built differently.
Our promise is simple: What happens in your scan stays under your control. We go the extra mile — technically, operationally, and contractually — to ensure your data remains private, secure, and used only for your benefit.
When You Need More Than a Report
CITRA gives you the data. Sometimes you need someone to help you act on it.
Our advisory team — with deep experience in software compliance, licensing, and vendor negotiations — is available for paid consultation. Whether you need help understanding your scan results, preparing for a licence renewal, or responding to an audit notice, we can help.
In appropriate cases, we can also represent your organisation in discussions with software vendors — so you don't have to face that conversation alone.
We do not offer free advice — because free advice comes with no accountability. When you pay for guidance, we stand behind it.
Write to us at advisory@citrainsight.in or call us. We respond within one business day.
Simple, honest pricing
No setup fees. No per-scan charges. No surprises.
15-day free trial — full scan access, no credit card required.
Ready to start? Go to the top →
Need custom pricing? Contact sales
What happens during the trial
✓ You can scan all your systems
✓ You'll see totals and exposure summary
✓ Detailed machine-level views unlock after upgrade
No credit card required. No surprise charges.
Our Trust Commitments
Data hosted in India
All customer data is hosted within India, aligned with local regulatory and data-residency expectations.
Aligned with the DPDP Act, 2023
CITRA is designed to comply with India's Digital Personal Data Protection framework, with consent tracking, data minimisation, and deletion controls built in.
No reporting to software vendors
CITRA does not share scan data, findings, or reports with software vendors, auditors, resellers, or third parties.
Your reports remain yours
All scan results and reports belong exclusively to your organisation. You decide if, when, and with whom they are shared.
Frequently Asked Questions