GrantLedger

GrantLedger is a web app (with a lightweight desktop agent) that turns messy database access into a verifiable, review-ready evidence trail. It continuously ingests database audit logs (Postgres, MySQL, SQL Server, Snowflake) and correlates them with identity providers (Okta/Azure AD) and ticketing systems (Jira/ServiceNow) to answer a hard question: was this access justified? The product focuses on “access narrative” rather than generic alerts—each sensitive query gets a human-readable explanation: actor, source, data touched, approval link, and policy outcome. It flags orphaned privileges, shared accounts, and access that bypassed change-management. Reports are exportable for SOC 2, ISO 27001, HIPAA, and internal audits. This is not a SIEM replacement; it’s a narrow tool built to reduce audit pain and prevent privilege creep from becoming a breach.