Endpoint security
for schools and hospitals.
EDR with HIPAA and FERPA compliance built in. One agent, one console, $5/endpoint/month.
14-day free trial · 25 endpoints · No credit card required
EDR with HIPAA and FERPA compliance built in. One agent, one console, $5/endpoint/month.
14-day free trial · 25 endpoints · No credit card required
Every other EDR vendor gives you raw log exports and says "good luck." Bastion generates the compliance evidence directly, because the controls are built into the product, not bolted on afterward.
Live compliance score, control checklist with remediation steps, PHI access timeline. One screen, everything an auditor needs.
14+ FERPA controls tracked with live status. PII detection timeline showing every student record access event, filtered, searchable, exportable.
AES-256-GCM encryption for all PHI with key rotation. Not a config option. Satisfies HIPAA §164.312(a)(2)(iv) out of the box.
Hash-chained audit logs. Every admin action is signed, linked, and verifiable. Satisfies HIPAA §164.312(b). Export for auditors in one click.
Generate a draft breach notification report from within the console. No consultant required for the first draft.
"Compliance is a shared responsibility. You are responsible for configuring controls, maintaining audit workflows, and producing compliance evidence for your regulatory framework."
HIPAA score is on your dashboard the moment you log in. FERPA PII detections are logged, tagged, and ready to export. Compliance is a feature, not an integration project.
79% of higher-ed institutions were hit by ransomware last year. The average healthcare breach costs $10.9 million. The security tools that stop this are priced for Fortune 500 companies.
Legacy EDR vendors cap their affordable tiers at 100 devices. Every school district and small hospital runs 500-2,000 endpoints. The next tier up: $100-$185/device/year. A 1,000-endpoint district: $100,000/year.
Entry-tier plans don't include real EDR. For detection, response, and forensics, you need the premium tier. 1,500-endpoint community hospital: $270,000/year. Compliance dashboards are still your problem.
No major EDR vendor ships a HIPAA compliance score, a FERPA control checklist, or a breach notification workflow. They sell you security. Compliance reports are a consulting engagement, $8,000-$24,000/year extra.
Replaces your separate AV, SIEM connector, compliance tool, and audit log solution.
Less than 0.5% CPU at idle. No JVM, no Electron, no Python runtime. Runs on 2016 hardware your students are already pushing hard.
YARA rule scanning, behavioral analytics, memory injection detection, script analysis. MITRE ATT&CK coverage mapped live.
Detect ransomware, isolate endpoint, quarantine file, kill process, notify IT, open Jira ticket. Automated for known threats.
Splunk HEC, Elasticsearch, and Microsoft Sentinel connectors built in and tested. No middleware, no custom scripts.
Isolate a compromised endpoint with one click. Block USB writes by policy. Recoverable, audited, reversible.
Every installed application across your fleet, updated in real time. Unapproved software flagged against your policy automatically.
Native desktop app on Windows, macOS, and Linux. Not a browser tab.
Enterprise EDR vendors built their products for Fortune 500 security teams. The pricing, the staffing assumptions, the product complexity — all of it assumes a dedicated SOC and a seven-figure security budget.
School districts and community hospitals don't have that. They have two IT staff, aging hardware, and a compliance officer who's also the technology coordinator. They need the same protection. They can't afford the same products.
We wrote Bastion in Rust so it runs on the hardware these organizations actually own. We built HIPAA and FERPA dashboards into the product so compliance doesn't require a $25,000/year consultant. We priced it at $5-7/endpoint because that's what a 1,200-endpoint school district can actually budget for.
The source code is available under BSL 1.1 (converts to Apache 2.0 after 4 years), built with Rust 2024, and source-available on GitHub. We think the organizations most vulnerable to breach should be able to inspect the software protecting them.
| Vendor | Price/yr | HIPAA | FERPA |
|---|---|---|---|
| Enterprise EDR (entry tier) | $60 | No | No |
| Enterprise EDR (full tier) | $180 | No | No |
| Bundled platform EDR | $36/user | No | No |
| Managed EDR | ~$108 | No | No |
| Bastion EDR Professional | $84 | Built-in | Built-in |
Pricing based on publicly listed rates as of March 2025. Annual billing. Bastion Professional at $7/mo = $84/yr.
Annual billing saves 20%.
Core EDR for smaller fleets
or $48/endpoint billed annually
For K-12 and community healthcare
or $67/endpoint billed annually
Large districts, health systems, MSPs
Contact sales for volume pricing
Every Professional feature included. We send your download link and trial license within 1 business day.