Updated May 15, 2026 · 10 platforms evaluated

Top 10 Visitor Management System in 2026: A Buyer-First Comparison

Honest 2026 ranking of the 10 best visitor management systems scored on sign-in workflow, ITAR + SOC 2 + HIPAA fit, value, support, scale.

By RiskWatch Editorial · Risk and Compliance Software Research

Verdict

TL;DR

If visitor management is one of several physical-security and compliance workflows you run (visitor logs alongside SOC 2 CC6.4 evidence, ISO 27001 A.7 physical controls, HIPAA 45 CFR 164.310, and ITAR 22 CFR 120-130 deemed-export tracking), RiskWatch ranks first on our weighted score because the visitor log is one module inside a 40+ framework risk-and-compliance tenant. If the load-bearing brief is purely kiosk-first sign-in polish (iPad reception, photo badge print, NDA capture, host notification, Slack ping), Envoy is the strongest pure-play pick on workflow and design; Sine (Honeywell) is the best pick for industrial and contractor-heavy sites; iLobby is the deepest for SOC 2 and ITAR-shaped enterprise visitor compliance; Proxyclick (Eptura) fits global multi-site Workday-integrated programmes. Pick by which side of the workflow-versus-compliance line your brief actually sits on, and ask every finalist for the evacuation muster export, the ITAR visitor-log retention term, and a 30-day pilot.

Pick by use case

Where each platform fits

Multi-framework physical-security + visitor compliance for regulated mid-market: RiskWatch: Visitor log lives inside a 40+ framework tenant including SOC 2 CC6.4, ISO 27001 A.7, HIPAA 45 CFR 164.310, ITAR 22 CFR 120-130, NIST 800-53 PE controls; one tenant for the assessment + the log + the audit-committee report.
Kiosk-first sign-in for office HQ and SaaS: Envoy: Strongest pure-play workflow polish in the category; iPad kiosk + photo capture + NDA + host Slack/Teams ping + Apple Wallet badge; 100,000+ sites; G2 4.6/5 across 500+ reviews.
Industrial sites with contractor pre-screening + induction: Sine (Honeywell): Honeywell-owned (Forge Connected Buildings) since the 2019 acquisition; contractor induction workflow, vehicle visitor screening, evacuation muster reporting; strongest fit for mining, construction, manufacturing.
SOC 2 + ITAR-shaped enterprise visitor compliance: iLobby: Deepest visitor compliance layer in the pure-play category; ITAR + DDTC visitor screening, watchlist (OFAC + denied-parties) checks, multi-tenant policy engine, FastTrack mobile pre-registration.
Global multi-site Workday-integrated visitor programme: Proxyclick (Eptura): Eptura-owned since 2022 (Condeco + iOFFICE merger); Workday + Microsoft 365 + Slack integrations; meeting-room and visitor unified workflow; 7,000+ sites across 70 countries.
Concierge-and-receptionist hybrid for class-A office buildings: The Receptionist: Two-way SMS host notification, button-based sign-in, visitor photo and badge print; published per-location pricing ($55-$200/month); G2 4.7/5 across 250+ reviews.
ITAR + CMMC + federal-contractor facilities: Honeywell Pro-Watch Visitor: Honeywell Pro-Watch access-control suite with native visitor module; ITAR + EAR deemed-export workflow, badge encoding for federal contractor sites, on-prem deployment for data-residency policies.
Lenel access-control footprints with visitor add-on: LenelS2 OnGuard Visitor: Lenel OnGuard is the dominant federal + financial-services access-control platform; visitor module ties guest badges to the same OnGuard cardholder database; on-prem deployment.
AMAG Symmetry shops with corporate visitor + watchlist: AMAG Symmetry GUEST: Symmetry GUEST is AMAG's visitor module integrated with Symmetry access control; OFAC/denied-parties watchlist screening; AMAG Symmetry CONNECT mobile credentials; strong financial-services install base.
Mid-market access-control buyers wanting cloud-native visitor add-on: Brivo Visitor: Brivo Access is the largest cloud-native access-control platform (NASDAQ: BRVS); Brivo Visitor ties guest sign-in to the same cloud tenant; published $99/door/month pricing on access-control side.

Visitor management software is a split category because two buyer profiles share the label. The first is a facilities or office-experience lead at a SaaS or professional-services firm who needs a polished iPad kiosk, photo capture, NDA acceptance, host notification, and visitor badge print. Envoy, Sine, The Receptionist, Greetly, Proxyclick, and ALICE Receptionist are the strongest kiosk-first picks for that brief and Envoy is the workflow leader. The second buyer is a security or compliance lead at a regulated facility (ITAR-registered defence contractor, SOC 2 SaaS data centre, HIPAA-covered hospital, NERC CIP utility, federal contractor under HSPD-12) who needs the visitor log to satisfy SOC 2 CC6.4 Physical Access, ISO/IEC 27001:2022 Annex A.7, HIPAA 45 CFR 164.310 facility access controls, and ITAR 22 CFR 120-130 deemed-export visitor screening. RiskWatch, iLobby, Honeywell Pro-Watch Visitor, LenelS2 OnGuard Visitor, and AMAG Symmetry GUEST are the strongest picks for that compliance-first brief.

We considered 21 candidates across the Capterra Shortlist for Visitor Management, G2 Grid for Visitor Management, Forrester Wave (Visitor Management 2024), and the access-control category vendors that ship visitor modules (Honeywell, LenelS2, AMAG, Brivo, Genetec). We cut to ten by removing near-duplicates (Greetly against The Receptionist on the concierge-kiosk axis; Splan against Proxyclick on the global-multi-site axis), excluding pure access-control platforms without a packaged visitor module (Genetec Synergis, Software House C-CURE 9000, Gallagher Security Command Centre), and excluding visitor-experience apps that lack the compliance scaffolding (Robin Workplace, Eden Workplace, Tactic). The ten platforms here cover both kiosk-first workflow polish and visitor compliance for regulated facilities.

Evacuation muster reporting is the load-bearing feature most buyers under-test in demos. OSHA's General Duty Clause and most facility security plans require that at any moment the facility can produce a muster list of every person on site, including visitors and contractors, with last-known location. Five of the ten platforms here (RiskWatch, iLobby, Sine, Honeywell Pro-Watch Visitor, LenelS2 OnGuard Visitor) ship muster reporting as a first-class feature with one-tap evacuation export; the other five do it through report templates. ITAR 22 CFR 120-130 retention is the second buyer-trap: defence contractors must retain visitor logs for at least 5 years after the visit (longer per DDTC programme), and a SaaS-first vendor that purges logs at 12 months by default will fail the audit. Pricing transparency is the third issue: six of the ten platforms here will not publish a list price.

At-a-glance

Comparison table

The 10 platforms scored on the methodology weights at the bottom of this page. Pricing-transparency pill is the buyer-honesty signal.

Rank	Product	Best for	Pricing transparency	G2	Verdict
1	RiskWatch RiskWatch International	Regulated mid-market and enterprise facilities (ITAR contractors, SOC 2 SaaS, HIPAA hospitals, federal contractors, utilities under NERC CIP) that need visitor compliance plus the broader physical-security and compliance platform in one tenant.	Partial	4.5/5 60+ reviews	Visitor log lives inside the same tenant as SOC 2 CC6.4 Physical Access evidence, ISO...
2	Envoy Envoy, Inc.	Office-HQ and SaaS facilities (100-10,000 employees) that prioritise kiosk-first workflow polish, Slack/Teams host notification, Apple Wallet visitor badge, and a workplace-platform extension for desk + room booking.	Partial	4.6/5 580+ reviews	Highest-reviewed pure-play visitor-management platform on G2 at 4.6/5 across 500+...
3	iLobby iLobby Corporation	Enterprise facilities (500-50,000 employees) with ITAR + EAR + SOC 2 + ISO 27001 + pharma manufacturing visitor compliance briefs that need policy-engine depth, watchlist screening, and multi-site multi-tenant deployment.	Opaque	4.5/5 220+ reviews	Deepest visitor compliance layer in the pure-play VMS category: configurable...
4	Sine (Honeywell) Honeywell International	Industrial facilities (mining, construction, manufacturing, oil-and-gas, utilities) with heavy contractor and vehicle visitor traffic, where induction workflow and evacuation muster reporting are the load-bearing features.	Opaque	4.5/5 320+ reviews	Strongest contractor induction workflow in the visitor-management category:...
5	Proxyclick (Eptura) Eptura, Inc.	Global enterprises (1,000-100,000 employees) running visitor management across multiple countries with Workday HRIS, Microsoft 365 + Outlook calendar, and meeting-room + desk-booking workflows under one tenant.	Opaque	4.4/5 280+ reviews	Global multi-site coverage: 7,000+ sites across 70 countries with strong...
6	The Receptionist The Receptionist, Inc.	Mid-market and class-A office buildings, professional-services firms, and SMB HQs (50-2,000 employees) that want a published-price polished iPad kiosk with two-way SMS host notification and minimal compliance overhead.	Public	4.7/5 270+ reviews	G2 4.7/5 across 250+ reviews; the highest-rated pure-play visitor-management platform...
7	Greetly Greetly, Inc.	SMB and mid-market HQs (25-1,000 employees), coworking-and-flex-office operators, and hybrid offices that need a configurable per-visitor-type sign-in flow with package and delivery sign-in.	Public	4.7/5 150+ reviews	G2 4.7/5 across 130+ reviews with reviewer commentary citing customer support...
8	Honeywell Pro-Watch Visitor Honeywell International	Federal contractor, ITAR-registered defence, CMMC-shaped, and federal-agency facilities with existing Honeywell Pro-Watch access-control footprint that need on-prem deployment + badge encoding + cleared-access-permission tie-in.	Opaque	4.2/5 90+ reviews	On-prem deployment for ITAR + CMMC + federal-contractor facilities with US-only...
9	LenelS2 OnGuard Visitor LenelS2 (Honeywell)	Federal, defence, financial-services, and healthcare facilities (1,000-100,000 employees) with existing OnGuard footprint that need a visitor module tied to the same cardholder database and on-prem deployment.	Opaque	4.1/5 110+ reviews	Dominant federal + defence + financial-services + healthcare access-control footprint;...
10	Brivo Visitor Brivo, Inc.	Multi-location SMB and mid-market customers (50-5,000 employees, 5-500 doors) already running Brivo Access who want a packaged cloud-native visitor add-on without a separate vendor.	Partial	4.5/5 360+ reviews	Cloud-native architecture; no on-prem infrastructure required, and the visitor module...

Calculator

Estimate the licence cost

Drag the slider to your headcount. Estimates use each vendor's published or triangulated tiers. Opaque vendors show Contact sales.

Employees500

11.3k2.5k3.8k5k

RiskWatch

Professional (≤ 1,000 employees)

$36,000/yr

Envoy

Visitor Standard (≤ 1,000 employees)

$3,948/yr

iLobby

Standard (est.) (quote-only tier)

Contact sales

Sine (Honeywell)

Sine Workflows (est.) (quote-only tier)

Contact sales

Proxyclick (Eptura)

Eptura Visit + Workplace (est.) (quote-only tier)

Contact sales

The Receptionist

Standard (≤ 500 employees)

$1,440/yr

Greetly

Standard (≤ 500 employees)

$1,788/yr

Honeywell Pro-Watch Visitor

Pro-Watch + Visitor mid-market (est.) (quote-only tier)

Contact sales

LenelS2 OnGuard Visitor

OnGuard + Visitor mid-large (est.) (quote-only tier)

Contact sales

Brivo Visitor

Brivo Access + Visitor mid-market (est.) (≤ 500 employees)

$11,880/yr

Estimates only. Opaque-pricing vendors do not publish list prices; bands are triangulated from public third-party sources dated 2026-05-15. Implementation services, module add-ons, and renewal escalators are extra.

Pick your own weights

Decision matrix

Default weights match the methodology at the bottom of this page. Drag the sliders to match your priorities and re-rank in real time.

Ease of use20%

How quickly a non-technical control owner reaches first value

Feature breadth20%

Module coverage across ERM, IT, audit, TPRM, BC

Value20%

Price to value ratio at mid-market

Customer support15%

Quality and responsiveness of vendor support

Scalability15%

Handling 5,000+ employees, multiple entities, regions

Integrations10%

Breadth of native connectors and APIs

Weights sum: 100%

1
Envoy
Editorial rank #2
8.71
2
RiskWatch
Editorial rank #1
8.64
3
iLobby
Editorial rank #3
8.55
4
The Receptionist
Editorial rank #6
8.45
5
Sine (Honeywell)
Editorial rank #4
8.42
6
Proxyclick (Eptura)
Editorial rank #5
8.37
7
Greetly
Editorial rank #7
8.29
8
Brivo Visitor
Editorial rank #10
8.27
9
Honeywell Pro-Watch Visitor
Editorial rank #8
7.97
10
LenelS2 OnGuard Visitor
Editorial rank #9
7.92

Switching cost

Migration matrix

Read row-to-column. Row = today's platform, column = tomorrow's. Colour reflects realistic switching effort, not vendor sales pitches.

From / To	RiskWatch	Envoy	iLobby	Sine	Proxyclick	The Receptionist	Greetly	Honeywell Pro-Watch Visitor	LenelS2 OnGuard Visitor	Brivo Visitor
RiskWatch	.	E	E	E	E	E	E	M	M	E
Envoy	M	.	M	M	M	E	E	H	H	M
iLobby	E	E	.	E	E	E	E	M	H	E
Sine	E	E	E	.	E	E	E	M	H	E
Proxyclick	E	E	E	E	.	E	E	M	H	E
The Receptionist	M	M	M	M	M	.	E	H	H	M
Greetly	M	M	M	E	M	E	.	H	H	E
Honeywell Pro-Watch Visitor	E	E	E	E	E	E	E	.	E	E
LenelS2 OnGuard Visitor	E	E	E	E	E	E	E	E	.	E
Brivo Visitor	M	M	M	E	M	E	E	M	H	.

Easy (E)Moderate (M)Hard (H)Source: per-vendor migration field with radar-profile fallback. Treat as a directional guide, not a quote.

RiskWatch

RiskWatch International · Founded 1993 · Annapolis, MD, USA

Visitor log + physical-security assessment + compliance evidence in one tenant.

Partial pricingG2 4.5 · Capterra 4.6 · 60+ reviews

Summary

RiskWatch ships a risk-and-compliance platform built around pre-mapped control libraries for 40+ frameworks. The visitor-management workflow is one module inside the platform: visitor sign-in, photo capture, NDA acceptance, host notification, badge print, escort tracking, watchlist screening, and evacuation muster reporting are tied to the same tenant as the SOC 2 CC6.4 Physical Access evidence, ISO 27001 A.7 physical-controls assessment, HIPAA 164.310 facility access controls, and ITAR 22 CFR 120-130 visitor-log retention. Customers include state governments in all 50 US states, healthcare networks, defence contractors, and financial-services holding companies. Single-tenant deployment with customer-owned data residency makes it the fit for ITAR + CMMC + HSPD-12-shaped regulated facilities that need a 5-year-plus visitor-log retention term.

Strengths

Visitor log lives inside the same tenant as SOC 2 CC6.4 Physical Access evidence, ISO 27001 A.7 physical-controls assessment, HIPAA 164.310 facility access controls, and ITAR 22 CFR 120-130 deemed-export visitor screening; auditors see one source of truth
Pre-mapped frameworks include SOC 2 + ISO 27001 + HIPAA + ITAR + EAR + NIST 800-53 (PE family) + NIST 800-171 r3 + CMMC 2.0 + NERC CIP + FFIEC + 30 more; the same evidence satisfies multiple physical-security audits
Evacuation muster reporting ships as a first-class feature: one-tap export of every person on site with last-known location, defensible under OSHA General Duty Clause and ASIS WVPI 2020
Single-tenant deployment with customer-owned data residency and configurable retention (5 years for ITAR, 6 years for HIPAA, custom for SOC 2); SaaS-first vendors default to 12-month log purges that fail ITAR audits
Escort tracking + dual-control workflow for ITAR-controlled areas and HIPAA-restricted zones; visitor badge ties to the host's responsibility chain
33-year operating history with federal customers (US Department of Defense, VA, DOJ, NSA per public press); the visitor-log chain-of-custody survives federal audit
Watchlist screening against OFAC SDN, denied-parties lists, and customer-uploaded persona-non-grata lists at sign-in

Weaknesses

Not a kiosk-first iPad experience at Envoy or The Receptionist polish; the visitor sign-in flow works but does not match the Apple-Wallet-badge consumer aesthetic that office-experience leads expect
Pure-play VMS competitors (Envoy, Sine, Greetly, iLobby) still win on workflow polish and out-of-the-box integration count for the office-HQ use case; RiskWatch is the right pick when visitor management is one of several compliance workflows, not when it is the only one
Public pricing is partial above Professional (we publish Standard $99/month and Professional $36K/year; Enterprise is quote-only)
Brand awareness on G2 / Capterra in the visitor-management cohort specifically is lower than Envoy or iLobby; total third-party review volume in this category sits below 100
Smaller native-integration count than Envoy or Proxyclick for collaboration tools (Slack, Microsoft Teams, Apple Wallet); slack and Teams integrate via REST and Zapier rather than first-class apps
Mobile pre-registration UX is functional but not a polished consumer app at Envoy or Proxyclick standard

Best for

Regulated mid-market and enterprise facilities (ITAR contractors, SOC 2 SaaS, HIPAA hospitals, federal contractors, utilities under NERC CIP) that need visitor compliance plus the broader physical-security and compliance platform in one tenant.

Worst for

Office-HQ buyers whose only brief is a polished iPad kiosk with Slack pings and Apple Wallet badge; Envoy or The Receptionist fits that brief better.

Key features

Visitor sign-in with photo capture, NDA acceptance, host notification, and badge print
Evacuation muster reporting with one-tap export of every person on site
Escort tracking and dual-control workflow for ITAR + HIPAA restricted zones
Watchlist screening (OFAC SDN + denied-parties + customer persona-non-grata)
Pre-mapped frameworks: SOC 2 CC6.4 + ISO 27001 A.7 + HIPAA 164.310 + ITAR + EAR + NIST 800-53 PE + CMMC 2.0 + NERC CIP
Contractor pre-registration and induction workflow
Vehicle visitor screening with plate capture
Configurable retention (5+ years for ITAR, 6 years for HIPAA)
Single-tenant deployment with customer-owned data residency
Audit-ready export to PDF + CSV with chain-of-custody

Integrations

25+ native. Notable: Microsoft Entra ID (SAML SSO), Okta, Microsoft 365 / SharePoint, Slack, Jira, Salesforce, Custom REST API.

Target size

100 to 25,000 employees · US · Canada · EU · UK · AU

Radar score

Pricing

Standard$99/month
Up to 250 employees
- · Up to 3 frameworks (SOC 2 + ISO 27001 + ITAR typical)
- · Visitor sign-in + photo + NDA + host notification
- · Email + named-CSM support
- · Quarterly business review
Professional$36,000/year
Up to 1,000 employees
- · Up to 10 frameworks
- · Unlimited visitor logs + evacuation muster reporting
- · Watchlist screening (OFAC + denied parties)
- · SSO + SAML + API access
- · Phone + dedicated CSM
EnterpriseContact sales
- · All 40+ frameworks (incl. ITAR + CMMC + HSPD-12)
- · Single-tenant deployment
- · Customer-owned data residency
- · Configurable retention (5+ years for ITAR)
- · 24/7 support + solutions architect

Watch for

· Implementation services billed separately (typical 1-time fee 15-25% of first-year licence)
· Custom framework additions outside the 40+ library are scoped per request
· Kiosk hardware (iPad + stand + badge printer) is customer-supplied

Standard and Professional tiers are published; Enterprise is quote-only because deployment topology and data-residency posture vary materially. Kiosk hardware is customer-supplied across all tiers.

Envoy

Envoy, Inc. · Founded 2013 · San Francisco, CA, USA

Kiosk-first visitor sign-in with the deepest workplace-platform integration in the category.

Partial pricingG2 4.6 · Capterra 4.7 · 580+ reviews

Summary

Envoy was founded in 2013 by Larry Gadea in San Francisco and is the pure-play workflow leader in visitor management. The platform ships a polished iPad kiosk with photo capture, NDA acceptance, host notification (Slack + Microsoft Teams + email), badge print, and Apple Wallet visitor badge. The 2020 pandemic pivot extended the product into workplace experience: desk booking, room booking, employee sign-in, deliveries, and visitor health screening. Envoy serves more than 100,000 workplaces and is the highest-reviewed pure-play visitor-management vendor on G2 (4.6/5 across 500+ reviews).

Strengths

Highest-reviewed pure-play visitor-management platform on G2 at 4.6/5 across 500+ reviews (May 2026); strongest reference pool for office-HQ and SaaS buyers
Polished iPad kiosk with photo capture, NDA acceptance, host notification (Slack + Teams + email), badge print, and Apple Wallet visitor badge; the workflow polish benchmark
Deepest workplace-platform extension in the category: desk booking, room booking, employee sign-in, deliveries, and visitor health screening sit in the same tenant
100,000+ sites across more than 70 countries; brand recognition is the strongest in this ranking and reduces internal-buyer-education work
Strong native integrations (Slack, Microsoft Teams, Google Workspace, Apple Wallet, Okta, Microsoft Entra ID, Salesforce, ServiceNow); workplace-platform side of the product extends the integration count further
SOC 2 Type II + ISO 27001 certified at the platform level; the certifications cover the SaaS layer the visitor data flows through

Weaknesses

Compliance scaffolding is light for ITAR-registered defence contractors and HIPAA-covered hospitals; the visitor log is a record, not a SOC 2 CC6.4 + ISO 27001 A.7 + HIPAA 164.310 + ITAR 22 CFR 120-130 cross-mapped evidence artefact
Default visitor-log retention is 12 months on lower tiers; configurable to longer terms on Enterprise but ITAR-friendly retention is not the default and has to be negotiated
Pricing scales fast: Visitor Basic $131/location/month and Visitor Standard $329/location/month at small-site list; Visitor Premium and Enterprise gate at quote-only and triangulate to $5K-$50K+/yr depending on site count
Workplace-platform extension (desk + room + delivery) is a different product set from the visitor brief; buyers who want only visitor management pay for adjacent capabilities they may not use
Watchlist screening (OFAC + denied parties) is available only on Premium and Enterprise tiers; the lower tiers ship sign-in workflow without the compliance screen

Best for

Office-HQ and SaaS facilities (100-10,000 employees) that prioritise kiosk-first workflow polish, Slack/Teams host notification, Apple Wallet visitor badge, and a workplace-platform extension for desk + room booking.

Worst for

ITAR + CMMC + federal-contractor facilities that need 5-year-plus visitor-log retention + deemed-export workflow + chain-of-custody export for DDTC audits; iLobby, Honeywell Pro-Watch Visitor, or RiskWatch Enterprise fit that brief better.

Key features

iPad kiosk with photo capture, NDA acceptance, host notification, badge print
Apple Wallet visitor badge and mobile pre-registration
Slack + Microsoft Teams + Google Workspace + email host alerts
Visitor health screening overlay
Workplace platform: desk booking, room booking, deliveries, employee sign-in
Watchlist screening (Premium / Enterprise tier)
SAML SSO + SCIM provisioning
Mobile sign-in app for iOS + Android

Integrations

100+ native. Notable: Slack, Microsoft Teams, Google Workspace, Apple Wallet, Okta, Microsoft Entra ID, Salesforce, ServiceNow.

Target size

50 to 50,000 employees · Global

Radar score

Pricing

Visitor Basic$1,572/year
Up to 250 employees
- · Per location: ~$131/month
- · Visitor sign-in + photo + NDA
- · Host email notification
- · Standard support
Visitor Standard$3,948/year
Up to 1,000 employees
- · Per location: ~$329/month
- · Slack + Teams host notification
- · Apple Wallet visitor badge
- · Watchlist screening (Premium add-on)
Visitor Premium / Enterprise (est.)Contact sales
- · Multi-site enterprise deployment
- · Configurable retention
- · SAML SSO + SCIM
- · Dedicated CSM

Watch for

· Per-location pricing; multi-site enterprises scale fast
· Workplace platform extensions (desks, rooms, deliveries) priced separately
· Watchlist screening gated to Premium and Enterprise

Visitor Basic and Standard are published per-location; Premium and Enterprise quote-only. Add-on workplace modules billed separately.

iLobby

iLobby Corporation · Founded 2014 · Toronto, ON, Canada

Enterprise visitor compliance for ITAR, SOC 2, and watchlist-heavy facilities.

Opaque pricingG2 4.5 · Capterra 4.6 · 220+ reviews

Summary

iLobby was founded in 2014 in Toronto and ships the deepest compliance-shaped visitor management product in the pure-play category. The platform's distinctive choice is a configurable policy engine that lets facility-security and compliance teams define visitor categories (employee, contractor, ITAR-cleared visitor, foreign national, vendor), enforce different sign-in flows per category, and screen against watchlists (OFAC SDN + DPL + customer persona-non-grata) at every entry. iLobby serves enterprise customers with ITAR + EAR deemed-export, FedRAMP-adjacent, and pharma + medical-device manufacturing visitor compliance briefs. Insight Partners took a minority investment in 2021.

Strengths

Deepest visitor compliance layer in the pure-play VMS category: configurable per-category sign-in flows, ITAR + DDTC + EAR deemed-export screening, OFAC SDN + DPL watchlist checks, customer persona-non-grata lists
FastTrack mobile pre-registration cuts on-site dwell time and produces a pre-screened visitor record before arrival
Strong fit for ITAR-registered defence contractors, pharma manufacturing (FDA inspection-ready visitor logs), and medical-device firms under 21 CFR Part 820 design-control facility access requirements
Multi-site, multi-tenant policy engine lets a global enterprise enforce US ITAR sign-in flows in US facilities and EU GDPR sign-in flows in EU facilities from one tenant
Evacuation muster reporting ships as a first-class feature with one-tap export aligned to OSHA + ASIS WVPI 2020
Forrester Wave Visitor Management 2024 Strong Performer; Capterra 4.6/5 across 200+ reviews

Weaknesses

Not a workplace-platform extension at Envoy depth; the desk + room + delivery story is configurable but not the load-bearing feature
Pricing is opaque; SoftwareAdvice + GetApp triangulate $5K-$30K per location per year scaling with watchlist + ITAR + multi-site policy modules
Implementation services typically 15-25% of first-year licence; the compliance-policy configuration is consultant-heavy at first deployment
Insight Partners minority investment (2021) is a softer signal than majority PE ownership but renewal-uplift pressure does show up in some customer reports
Brand awareness in the office-HQ buyer segment is lower than Envoy; the product is well known in security + compliance circles but less so among workplace-experience leads

Best for

Enterprise facilities (500-50,000 employees) with ITAR + EAR + SOC 2 + ISO 27001 + pharma manufacturing visitor compliance briefs that need policy-engine depth, watchlist screening, and multi-site multi-tenant deployment.

Worst for

SMB and mid-market office-HQ buyers whose only brief is a polished kiosk and Slack host notification; the compliance-policy depth is wasted without an ITAR or SOC 2 driver.

Key features

Configurable per-category visitor sign-in flows (employee, contractor, ITAR-cleared, foreign national, vendor)
ITAR + DDTC + EAR deemed-export screening at sign-in
OFAC SDN + DPL + customer persona-non-grata watchlist checks
FastTrack mobile pre-registration
Evacuation muster reporting with one-tap export
Multi-site multi-tenant policy engine
Touchless and contactless sign-in via QR code
Visitor analytics and dashboard for compliance reporting

Integrations

40+ native. Notable: Microsoft Entra ID, Okta, Slack, Microsoft Teams, ServiceNow, Salesforce, Honeywell Pro-Watch.

Target size

200 to 1,00,000 employees · US · Canada · UK · EU · AU · APAC

Sine (Honeywell)

Honeywell International · Founded 2012 · Brisbane, QLD, Australia (Honeywell Forge Connected Buildings)

Industrial visitor management with contractor induction and vehicle screening.

Opaque pricingG2 4.5 · Capterra 4.7 · 320+ reviews

Summary

Sine was founded in 2012 in Brisbane and acquired by Honeywell in October 2019, where it now sits inside the Honeywell Forge Connected Buildings portfolio. The platform's distinctive choice is industrial + contractor visitor management: pre-arrival contractor inductions with safety video acknowledgement, vehicle visitor screening with plate capture, evacuation muster reporting, and integration with Honeywell access-control and building-management products. Sine is the strongest pure-play pick for mining, construction, manufacturing, and heavy-industry facilities that run contractor-heavy visitor traffic. Honeywell's NASDAQ: HON stability removes renewal-uplift pressure.

Strengths

Strongest contractor induction workflow in the visitor-management category: pre-arrival safety video + acknowledgement + signed waiver + induction-validity tracking
Vehicle visitor screening with plate capture, driver licence verification, and vehicle-induction acknowledgement for industrial sites
Evacuation muster reporting ships as a first-class feature with one-tap export and live on-site count
Honeywell Forge Connected Buildings ecosystem integration: ties to Honeywell Pro-Watch access control, Honeywell building-management products, and Honeywell Forge analytics
Public-company stability (NASDAQ: HON, ~$140B market cap May 2026); no PE renewal-pressure dynamic
Strong fit for mining (Rio Tinto, BHP), construction (Lendlease, John Holland), and heavy-industry manufacturing facilities

Weaknesses

Pricing is opaque; SoftwareAdvice + Capterra triangulate $1.5K-$15K per site per year depending on add-ons (contractor induction, vehicle screening, evacuation muster)
Office-HQ aesthetic is industrial-shaped; the iPad kiosk works but does not match the polished consumer aesthetic Envoy or The Receptionist ship
Honeywell ownership channels Sine roadmap toward the Honeywell Forge ecosystem; standalone customers without other Honeywell footprint pay a Honeywell platform-tax
Slack + Microsoft Teams integrations are functional but less first-class than Envoy or Proxyclick; the product is shaped for industrial-site control rooms, not office-HQ comms
Brand awareness in the office-HQ buyer segment is lower than Envoy and Proxyclick despite the Honeywell parent

Best for

Industrial facilities (mining, construction, manufacturing, oil-and-gas, utilities) with heavy contractor and vehicle visitor traffic, where induction workflow and evacuation muster reporting are the load-bearing features.

Worst for

Office-HQ SaaS or professional-services facilities whose load-bearing brief is workplace experience (desk + room + delivery + employee sign-in); Envoy or Proxyclick fits that brief better.

Key features

Visitor sign-in with photo capture and NDA acceptance
Contractor induction workflow with safety video + acknowledgement
Vehicle visitor screening with plate capture and driver licence verification
Evacuation muster reporting with one-tap export
Honeywell Pro-Watch access-control integration
Honeywell Forge Connected Buildings analytics integration
Mobile sign-in app for iOS + Android
Multi-site rollout with central policy management

Integrations

40+ native. Notable: Honeywell Pro-Watch, Honeywell Forge, Microsoft Entra ID, Okta, Slack, Microsoft Teams, ServiceNow.

Target size

200 to 1,00,000 employees · AU · NZ · US · Canada · UK · EU · APAC

Proxyclick (Eptura)

Eptura, Inc. · Founded 2010 · Brussels, Belgium (Eptura HQ: Atlanta, GA, USA)

Global multi-site visitor management folded into the Eptura workplace suite.

Opaque pricingG2 4.4 · Capterra 4.5 · 280+ reviews

Summary

Proxyclick was founded in 2010 in Brussels and was acquired in 2021 by what became Eptura (a Thoma Bravo-backed workplace-platform consolidator formed October 2022 from the merger of Condeco, iOFFICE, SpaceIQ, Proxyclick, and Hippo CMMS). The platform's distinctive choice is global multi-site visitor management with strong Workday + Microsoft 365 + Slack integrations. Proxyclick serves 7,000+ sites across 70 countries and is the default pick for global enterprises that need a unified visitor + meeting-room + desk-booking workflow under one tenant. Honest disclosure: the Eptura consolidation has stretched Proxyclick's product roadmap and some customer reports note slower release cadence post-merger.

Strengths

Global multi-site coverage: 7,000+ sites across 70 countries with strong multi-language and multi-region GDPR + data-residency posture
Strong native integrations with Workday (HRIS-driven employee directory), Microsoft 365 (Outlook calendar + Teams), Slack, Okta, Microsoft Entra ID
Visitor + meeting-room + desk-booking unified workflow under the Eptura tenant; one source of truth for global workplace operations
Pre-arrival visitor health screening overlay (legacy of 2020 pandemic pivot) and OFAC + denied-parties watchlist screening on higher tiers
Capterra 4.5/5 across 250+ reviews; G2 4.4/5 with reviewer commentary citing strong multi-site rollout experience
ISO 27001 + SOC 2 Type II certified at the platform level

Weaknesses

Eptura consolidation (Oct 2022) has stretched Proxyclick's product roadmap; reviewer commentary on G2 and Capterra in 2024-2026 notes slower release cadence and bundled-product-tax for buyers who only want visitor management
Pricing is opaque post-Eptura merger; pre-merger Proxyclick listed plans around 100 EUR/location/month for Smart and 200 EUR for Premium, but current pricing is quote-only at Eptura scale
Compliance scaffolding is configurable but not first-class at iLobby depth; the visitor log is a record more than a SOC 2 CC6.4 + ITAR cross-mapped evidence artefact
Thoma Bravo PE ownership and the multi-product consolidation raise typical renewal-uplift risk per customer reports
US data residency is configurable but requires negotiation; EU and global multi-region deployments are the natural default

Best for

Global enterprises (1,000-100,000 employees) running visitor management across multiple countries with Workday HRIS, Microsoft 365 + Outlook calendar, and meeting-room + desk-booking workflows under one tenant.

Worst for

ITAR-registered defence contractors that need US-only data residency and 5-year-plus visitor-log retention; iLobby, Honeywell Pro-Watch Visitor, or RiskWatch Enterprise fit that brief better.

Key features

Visitor sign-in with photo, NDA, host notification, badge print
Workday + Microsoft 365 + Outlook calendar + Slack + Teams integrations
Meeting room and desk booking unified with visitor workflow
Pre-arrival visitor health screening overlay
Watchlist screening (OFAC + denied parties; add-on tier)
Multi-language and multi-region GDPR posture
Touchless and contactless sign-in via QR code
Visitor analytics and reporting dashboard

Integrations

80+ native. Notable: Workday, Microsoft 365, Microsoft Teams, Slack, Okta, Microsoft Entra ID, Salesforce, ServiceNow.

Target size

500 to 2,50,000 employees · Global

The Receptionist

The Receptionist, Inc. · Founded 2012 · Denver, CO, USA

Concierge-and-receptionist hybrid with two-way SMS and published per-location pricing.

Public pricingG2 4.7 · Capterra 4.7 · 270+ reviews

Summary

The Receptionist was founded in 2012 in Denver and remains independent and founder-led. The platform's distinctive choice is a button-based iPad sign-in flow with two-way SMS host notification, photo capture, and visitor badge print, paired with published per-location pricing ($55-$200/month). The product is the strongest concierge-and-receptionist hybrid for class-A office buildings, professional-services firms, and mid-market HQs where the office-experience lead wants a polished kiosk without the workplace-platform sprawl of Envoy or Proxyclick. G2 places it at 4.7/5 across 250+ reviews.

Strengths

G2 4.7/5 across 250+ reviews; the highest-rated pure-play visitor-management platform on G2 by user-satisfaction percentile
Published per-location pricing ($55 Basic, $120 Standard, $200 Premium per month); unusually transparent in this category where 6 of 10 platforms gate quotes
Two-way SMS host notification is the platform's distinctive workflow; visitors and hosts can text back and forth without an app install
Button-based iPad sign-in flow is faster than form-based flows; reviewer commentary cites first-time visitor sign-in under 30 seconds
Independent and founder-led ownership; no PE renewal-pressure dynamic and consistent product velocity reported by long-tenured customers
Strong fit for class-A office buildings, professional-services firms (law, accounting, consulting), and mid-market HQs where receptionist-replacement is the brief

Weaknesses

Compliance scaffolding is light at iLobby or RiskWatch depth; the visitor log is a record without ITAR + SOC 2 CC6.4 + ISO 27001 A.7 cross-mapped evidence
Smaller integration count than Envoy or Proxyclick; Slack and Microsoft Teams ship as standard but the workplace-platform extension story is thin
Multi-site enterprise rollout with multi-region GDPR + data-residency posture is less mature than Proxyclick or iLobby
Watchlist screening (OFAC + denied parties) is not a first-class feature; the platform is shaped for low-risk office visitor traffic
Mobile pre-registration UX is functional but not at Envoy or Proxyclick polish

Best for

Mid-market and class-A office buildings, professional-services firms, and SMB HQs (50-2,000 employees) that want a published-price polished iPad kiosk with two-way SMS host notification and minimal compliance overhead.

Worst for

ITAR + CMMC + SOC 2-driven facilities that need watchlist screening + multi-site multi-tenant policy engine + 5-year retention; iLobby, RiskWatch Enterprise, or Honeywell Pro-Watch Visitor fit that brief better.

Key features

Button-based iPad sign-in flow
Two-way SMS host notification
Photo capture and visitor badge print
Slack + Microsoft Teams + email host alerts
NDA acceptance and document signing at sign-in
SAML SSO + SCIM (Premium tier)
Multi-location dashboard for mid-market multi-site
Mobile pre-registration

Integrations

30+ native. Notable: Slack, Microsoft Teams, Microsoft Entra ID, Okta, Google Workspace, Brivo, Kisi.

Target size

25 to 5,000 employees · US · Canada · UK · EU · AU

Greetly

Greetly, Inc. · Founded 2013 · Denver, CO, USA

Configurable visitor sign-in for SMB and mid-market with a strong package-delivery workflow.

Public pricingG2 4.7 · Capterra 4.7 · 150+ reviews

Summary

Greetly was founded in 2013 in Denver by Dave Milliken and remains independent and founder-led. The platform's distinctive choice is a highly configurable per-visitor-type sign-in flow with strong support for adjacent workflows: package and delivery sign-in for mailroom-replacement use cases, food-delivery and vendor sign-in, and visitor-and-employee unified sign-in for hybrid offices. Greetly serves SMB and mid-market customers including DHL, Office Evolution, and Indeed regional offices. G2 places it at 4.7/5 across 130+ reviews.

Strengths

G2 4.7/5 across 130+ reviews with reviewer commentary citing customer support responsiveness and configurability
Strong package and delivery sign-in workflow extends the product into mailroom-replacement; useful for coworking-and-flex-office operators (Office Evolution case)
Per-visitor-type configurable sign-in flows; SMB and mid-market customers can ship distinct flows for employees, contractors, food delivery, and packages without a multi-tenant policy engine
Mid-market price band ($79-$249/month per location); independent founder-led ownership keeps renewal pressure low
Touchless and contactless sign-in via QR code; visitor-and-employee unified sign-in for hybrid offices
Strong native integrations for SMB stack: Slack, Microsoft Teams, Google Workspace, Outlook, and 30+ webhooks

Weaknesses

Smaller install base than The Receptionist or Envoy; reference pool for class-A office buildings or enterprise mid-market is thinner
Compliance scaffolding is configurable but not first-class for ITAR + SOC 2 + HIPAA; the per-visitor-type flow can be configured to ask the right questions but does not carry the cross-mapped evidence layer iLobby or RiskWatch ship
Multi-site enterprise rollout with multi-region GDPR posture is less mature than Proxyclick or iLobby
Watchlist screening (OFAC + denied parties) is configurable through webhooks rather than a first-class feature
Brand awareness in the office-HQ buyer segment is lower than Envoy and The Receptionist

Best for

SMB and mid-market HQs (25-1,000 employees), coworking-and-flex-office operators, and hybrid offices that need a configurable per-visitor-type sign-in flow with package and delivery sign-in.

Worst for

ITAR + CMMC + SOC 2-driven facilities that need watchlist screening + multi-tenant policy + 5-year retention; iLobby, RiskWatch Enterprise, or Honeywell Pro-Watch Visitor fit that brief better.

Key features

Per-visitor-type configurable sign-in flows
Visitor sign-in with photo capture and NDA
Package and delivery sign-in workflow
Visitor-and-employee unified sign-in for hybrid offices
Touchless QR-code sign-in
Slack + Microsoft Teams + Google Workspace alerts
SAML SSO (Enterprise tier)
Multi-location dashboard

Integrations

30+ native. Notable: Slack, Microsoft Teams, Google Workspace, Microsoft Entra ID, Okta, Outlook, Webhooks.

Target size

25 to 2,000 employees · US · Canada · UK · EU · AU

Honeywell Pro-Watch Visitor

Honeywell International · Founded 1885 · Charlotte, NC, USA

On-prem visitor module inside the Honeywell Pro-Watch access-control suite.

Opaque pricingG2 4.2 · Capterra 4.3 · 90+ reviews

Summary

Honeywell Pro-Watch is Honeywell's flagship access-control platform with a native visitor module that ties visitor sign-in, badge encoding, and access permissions to the same Pro-Watch cardholder database. The platform's distinctive choice is on-prem deployment for data-residency policies and federal-contractor facilities that need US-only physical infrastructure. Pro-Watch is widely used in federal, defence, financial-services, and pharmaceutical-manufacturing facilities and pairs with the broader Honeywell physical-security and building-management portfolio. The visitor module is one of the deepest for ITAR + EAR deemed-export workflow at the access-control layer.

Strengths

On-prem deployment for ITAR + CMMC + federal-contractor facilities with US-only data-residency policies
Native badge encoding for federal contractor sites; visitor badges tie to Pro-Watch cardholder database and access permissions
Strong fit for ITAR + EAR deemed-export workflow at the access-control layer; visitor categories tie to cleared / uncleared / foreign-national access permissions
Honeywell ecosystem integration: Pro-Watch ties to Sine visitor, MAXPRO video, Honeywell Forge analytics, and building-management products
Public-company stability (NASDAQ: HON, ~$140B market cap May 2026); no PE renewal-pressure dynamic
Deep federal + defence + financial-services + pharma install base for reference checks

Weaknesses

Not a kiosk-first iPad workflow at Envoy or Sine polish; the visitor module is configured inside Pro-Watch and the UX shows access-control heritage
Pricing is opaque and channel-led; SoftwareAdvice + integrator-channel teardowns triangulate $50K-$500K+ for Pro-Watch deployments with visitor module included
On-prem deployment requires customer-supplied infrastructure; SaaS-first buyers without a Pro-Watch footprint pay an integrator-and-infrastructure tax
Implementation services are integrator-channel-driven (Honeywell partners ADT, Convergint, Johnson Controls, STANLEY); 12-26 week deployment with consultant-heavy go-live
Standalone visitor-module licensing without a broader Pro-Watch contract is rarely cost-justified

Best for

Federal contractor, ITAR-registered defence, CMMC-shaped, and federal-agency facilities with existing Honeywell Pro-Watch access-control footprint that need on-prem deployment + badge encoding + cleared-access-permission tie-in.

Worst for

SaaS, professional-services, and mid-market office-HQ buyers without an existing Pro-Watch footprint; the platform tax is unwarranted for a kiosk-first workflow.

Key features

Visitor sign-in tied to Pro-Watch cardholder database
Badge encoding for federal-contractor + ITAR-controlled sites
Cleared / uncleared / foreign-national access permission tie-in
On-prem deployment for US-only data-residency
Honeywell MAXPRO video and Forge analytics integration
Evacuation muster reporting
Workflow engine with chain-of-custody export
Channel-partner integration with ADT, Convergint, Johnson Controls

Integrations

60+ native. Notable: Honeywell Pro-Watch, Honeywell MAXPRO video, Honeywell Forge, Microsoft Entra ID, Active Directory, Sine.

Target size

1,000 to 2,50,000 employees · US · Canada · UK · EU · AU · APAC

LenelS2 OnGuard Visitor

LenelS2 (Honeywell) · Founded 1991 · Pittsford, NY, USA

Visitor module inside the dominant federal + financial-services OnGuard access-control platform.

Opaque pricingG2 4.1 · Capterra 4.2 · 110+ reviews

Summary

LenelS2 was founded as Lenel in 1991, merged with S2 Security in 2018, and was acquired by Honeywell in June 2024 as part of Carrier Global's Access Solutions divestiture. The OnGuard platform is the dominant access-control system in federal, defence, financial-services, and healthcare facilities and ships a native visitor module that ties guest badges, sign-in records, and escort workflow to the same OnGuard cardholder database. On-prem and hybrid-cloud deployment options serve customers with strict data-residency policies. Honeywell ownership rebrands the product family but keeps the OnGuard installed base intact.

Strengths

Dominant federal + defence + financial-services + healthcare access-control footprint; OnGuard is the system the security director already runs
Native visitor module ties guest badges, sign-in records, and escort workflow to the OnGuard cardholder database; one source of truth for cleared + uncleared access permissions
On-prem and hybrid-cloud deployment for US-only or EU-only data-residency policies
Honeywell ownership (June 2024) brings NASDAQ: HON stability; the public-company parent removes PE renewal-pressure dynamic seen in the prior Carrier ownership
Strong channel partner ecosystem (Convergint, Johnson Controls, ADT, STANLEY); integrator-led implementation is a known commodity
Deepest installed base in this ranking for federal + DoD + IC contractor facilities under ITAR + EAR + HSPD-12

Weaknesses

Not a kiosk-first iPad workflow at Envoy or Sine polish; the visitor module is configured inside OnGuard and the UX shows 30+ years of access-control heritage
Pricing is opaque and integrator-channel-led; OnGuard core deployments triangulate $50K-$1M+ depending on cardholder count, door count, and module mix
Standalone visitor-module licensing without a broader OnGuard contract is not the path to market; you buy OnGuard with the visitor module included rather than the other way around
Implementation services 15-30% of first-year licence; 12-26 week deployment with consultant-heavy go-live
Honeywell + Carrier ownership churn (June 2024 transition) raises typical merger-integration risk for the next 12-24 months

Best for

Federal, defence, financial-services, and healthcare facilities (1,000-100,000 employees) with existing OnGuard footprint that need a visitor module tied to the same cardholder database and on-prem deployment.

Worst for

SaaS, professional-services, and mid-market office-HQ buyers without an OnGuard footprint; standalone visitor-module licensing is not the path to market.

Key features

Visitor sign-in tied to OnGuard cardholder database
Guest badge encoding for cleared + uncleared access
Escort workflow tied to host cardholder
On-prem and hybrid-cloud deployment
OnGuard event-monitoring tie-in for evacuation muster
Strong integrator partner network (Convergint, JCI, ADT)
Channel-led implementation aligned to ITAR + HSPD-12 + DoD
Audit-ready export for federal + DoD inspectors

Integrations

70+ native. Notable: LenelS2 OnGuard core, Microsoft Entra ID, Active Directory, Honeywell MAXPRO video, Genetec video, ServiceNow.

Target size

1,000 to 5,00,000 employees · US · Canada · UK · EU · AU · APAC

#10

Brivo Visitor

Brivo, Inc. · Founded 1999 · Bethesda, MD, USA

Cloud-native visitor module bolted onto the largest cloud access-control platform.

Partial pricingG2 4.5 · Capterra 4.4 · 360+ reviews

Summary

Brivo was founded in 1999 in Bethesda and went public on NASDAQ in late 2021 via a SPAC merger with Crown PropTech Acquisitions. Brivo Access is the largest cloud-native access-control platform in the SMB and mid-market segment, with published $99/door/month pricing on the access-control side. Brivo Visitor is the cloud-native visitor module that ties guest sign-in, badge issuance, and access permissions to the same Brivo cloud tenant. The product is the natural pick for mid-market and multi-location buyers who already run Brivo Access and want a packaged visitor add-on without standing up a separate vendor.

Strengths

Cloud-native architecture; no on-prem infrastructure required, and the visitor module shares the same tenant as Brivo Access
Published $99/door/month pricing on the Brivo Access side anchors the value axis; Brivo Visitor is bundled into mid-tier plans rather than priced separately for every site
Strong fit for multi-location SMB + mid-market footprints (retail, restaurant chains, coworking, fitness, healthcare clinics) that need cloud access control + a packaged visitor add-on
Public-company stability (NASDAQ: BRVS) and the published pricing remove the renewal-uplift opacity seen at OnGuard + Pro-Watch
G2 4.5/5 across 300+ reviews on the Brivo Access side; the visitor module inherits the platform reputation
Mobile-first sign-in via Brivo Mobile Pass; visitors can be issued one-time access on a smartphone without a physical badge

Weaknesses

Compliance scaffolding is light for ITAR + SOC 2 CC6.4 + HIPAA depth; the visitor log is a record without the cross-mapped evidence layer iLobby or RiskWatch ship
Not a kiosk-first iPad workflow at Envoy or The Receptionist polish; the visitor module is shaped for cloud-access-control-led customers rather than office-HQ workflow leads
Brand awareness in the office-HQ buyer segment is lower than Envoy and Proxyclick; Brivo is known on the access-control side rather than the visitor side
Watchlist screening (OFAC + denied parties) is not a first-class feature; the platform is shaped for low-to-medium-risk multi-location visitor traffic
Visitor-module-only buyers (without Brivo Access footprint) pay for a packaged platform whose primary value is access control

Best for

Multi-location SMB and mid-market customers (50-5,000 employees, 5-500 doors) already running Brivo Access who want a packaged cloud-native visitor add-on without a separate vendor.

Worst for

ITAR + CMMC + federal-contractor facilities that need on-prem deployment, 5-year-plus visitor-log retention, and badge encoding for cleared-access permissions; LenelS2 OnGuard or Honeywell Pro-Watch fit that brief better.

Key features

Cloud-native visitor sign-in shared with Brivo Access tenant
Brivo Mobile Pass for one-time visitor access via smartphone
Guest badge issuance tied to Brivo cardholder database
Multi-location dashboard for SMB + mid-market chains
Photo capture, NDA acceptance, host notification
SAML SSO + SCIM (Enterprise tier)
API + webhooks for custom integrations
Published $99/door/month anchoring on the access-control side

Integrations

80+ native. Notable: Brivo Access, Microsoft Entra ID, Okta, Google Workspace, Slack, Eagle Eye Networks, Verkada.

Target size

50 to 10,000 employees · US · Canada · UK · EU · AU

Step by step

Buying guide

Walk these steps in order. The shortlist falls out of step 1, the negotiation moves come together in step 6, and step 8 closes the deal.

Name the primary visitor brief in one sentence

Before you shortlist, write down the one visitor brief you absolutely must solve. Examples: replace the paper sign-in book in our HQ reception with a polished iPad; pass the next SOC 2 audit by producing CC6.4 visitor evidence in one click; satisfy ITAR 22 CFR 120-130 deemed-export visitor screening at our defence-contractor facility; track contractor inductions and vehicle visitors at our mining site; produce evacuation muster reports for OSHA. The shortlist falls out of the one-sentence answer: kiosk-first briefs land on Envoy, The Receptionist, Greetly; compliance-first briefs land on RiskWatch, iLobby, Honeywell Pro-Watch, LenelS2 OnGuard; industrial briefs land on Sine; multi-location SMB cloud-access briefs land on Brivo.

Match the shortlist to your headcount, site count, and budget

Filter the ten platforms by employee count, site count, and budget band. Under 100 employees with one office at $5K budget rules out everything except The Receptionist Basic, Greetly Basic, and Envoy Visitor Basic. Mid-market 500-2,000 employees with 3-10 sites at $25K-$80K budget filters in RiskWatch Standard / Professional, Envoy Standard, iLobby Standard, Proxyclick, Sine, Greetly Enterprise, and The Receptionist Premium. Enterprise 5,000+ employees with 20+ sites at $80K+ budget filters in RiskWatch Enterprise, iLobby Enterprise, Honeywell Pro-Watch, LenelS2 OnGuard, and Proxyclick global enterprise.

Pull the G2 + Capterra patterns from the last 12 months

For each shortlisted vendor, read 20+ G2 and Capterra reviews from the last 12 months. Look for patterns, not single outliers. Common patterns in this visitor-management category: 'polished iPad kiosk, light compliance' (Envoy, The Receptionist, Greetly); 'industrial contractor depth, less office-HQ polish' (Sine, Honeywell Pro-Watch); 'deep ITAR + SOC 2 policy engine, consultant-led implementation' (iLobby, RiskWatch); 'access-control platform first, visitor module included' (LenelS2 OnGuard, Brivo, AMAG Symmetry GUEST).

Confirm the visitor-log retention term matches your compliance brief

SaaS-first vendors default to 12-month visitor-log retention; ITAR requires 5 years, HIPAA requires 6 years, SOC 2 requires whatever the entity documents in its retention policy. Ask every finalist for the configurable-retention term in writing and confirm the term is available at your contracted tier rather than gated to an Enterprise upgrade. RiskWatch, iLobby, Honeywell Pro-Watch, and LenelS2 OnGuard configure long retention natively; Envoy, Sine, The Receptionist, Greetly, Proxyclick, and Brivo Visitor have shorter defaults and require negotiation at higher tiers.

Pressure-test evacuation muster reporting and ITAR visitor screening in the pilot

Evacuation muster reporting and ITAR + EAR deemed-export visitor screening are the load-bearing features most buyers under-test in demos. Ask each finalist for a 30-day pilot with three real scenarios: a fire-drill muster export at peak occupancy; an ITAR-shaped foreign-national visitor sign-in flow with watchlist screening; a contractor induction with safety video and vehicle plate capture. The platform that handles all three without three weeks of professional services is the one that will scale post-deal.

Triangulate the pricing if the vendor will not publish

Six of the ten platforms here (iLobby, Sine, Proxyclick, Honeywell Pro-Watch, LenelS2 OnGuard; partial: RiskWatch, Envoy, Brivo Visitor) gate pricing behind a demo. For each opaque vendor, pull at least two independent third-party price triangulations (SoftwareAdvice, GetApp, Capterra Shortlist, Forrester Wave Visitor Management 2024, vendor partner-channel teardowns are all useful) and use them as your anchor in negotiation. Per-location and per-door pricing scale fast on multi-site deployments; model 3-year TCO at your projected footprint, not the first-year list.

Pressure-test data residency and the exit clause

Your visitor data is sensitive (identities, photos, NDA records, ITAR-controlled visit purposes). Ask each vendor: where does my data live, who can access it, and what happens to it if I leave? RiskWatch and Honeywell Pro-Watch support single-tenant or on-prem deployment with customer-owned data residency. LenelS2 OnGuard supports on-prem and hybrid-cloud. Most SaaS-first vendors (Envoy, Sine, The Receptionist, Greetly, Proxyclick, iLobby, Brivo) are multi-tenant cloud; that is fine if the SOC 2 report holds up to your TPRM team's review. Get the exit clause in writing: data export format, retention period after termination, and price.

Run the decision matrix on this page with your own weights

The default methodology weights on this page (20% Ease, 20% Features, 20% Value, 15% Support, 15% Scalability, 10% Integrations) reflect a generic mid-market buyer. Your weights may differ. An office-HQ buyer may push Ease of Use to 35% (which functionally raises Envoy and The Receptionist). An ITAR-shaped buyer may push Features to 30% and Scalability to 25% (which functionally raises RiskWatch, iLobby, Honeywell Pro-Watch). A multi-location SMB buyer may push Value to 30% (which functionally raises The Receptionist, Greetly, Brivo). Use the decision-matrix slider on this page to re-rank with your weights before you book the demos.

Frequently asked

Buyer questions, answered

The eight questions our pre-sales team hears the most often when buyers compare this category.

What is a visitor management system?

A visitor management system is software that captures and tracks every visitor entering a facility: sign-in, photo, identification, NDA acceptance, host notification, badge print, escort tracking, and sign-out. Compliance-shaped systems extend this with watchlist screening (OFAC SDN, denied parties), per-category sign-in flows (ITAR-cleared, foreign national, contractor), evacuation muster reporting, and configurable retention. The ten platforms in this ranking cover both the kiosk-first workflow brief (Envoy, Sine, The Receptionist, Greetly, Proxyclick) and the compliance-first brief (RiskWatch, iLobby, Honeywell Pro-Watch Visitor, LenelS2 OnGuard Visitor, Brivo).

Which visitor management system is best for ITAR-registered defence contractors?

ITAR 22 CFR 120-130 requires US persons access controls, deemed-export screening at sign-in for foreign-national visitors, and a 5-year-plus visitor-log retention. RiskWatch Enterprise, iLobby, Honeywell Pro-Watch Visitor, and LenelS2 OnGuard Visitor are the four platforms in this ranking that ship the ITAR workflow as a first-class feature with cleared / uncleared / foreign-national category sign-in flows, OFAC + DDTC + denied-parties screening, and configurable retention beyond the SaaS default 12 months. Envoy, Sine, The Receptionist, Greetly, Proxyclick, and Brivo configure ITAR through policy but do not ship it pre-built.

How does visitor management software map to SOC 2 CC6.4 Physical Access?

SOC 2 Trust Services Criterion CC6.4 requires the entity to restrict physical access to facilities and protected information assets to authorised personnel. Auditors test this through visitor-log review (who entered, when, escorted by whom), badge issuance and retrieval, and evacuation muster lists. The visitor management system is the primary evidence source for CC6.4 testing. Platforms that ship CC6.4 as a pre-mapped framework (RiskWatch) produce the audit evidence in a single click; platforms that store the log only (Envoy, Sine, The Receptionist) require the SOC 2 auditor or internal compliance team to extract, format, and tie the records to the CC6.4 control description.

What is evacuation muster reporting and which platforms ship it as a first-class feature?

Evacuation muster reporting is the one-tap export of every person currently on-site (employees, visitors, contractors) with last-known location, used at fire drills, lockdowns, and real evacuations. OSHA's General Duty Clause and most facility security plans require it. RiskWatch, iLobby, Sine, Honeywell Pro-Watch Visitor, and LenelS2 OnGuard Visitor ship muster reporting as a first-class feature; Envoy, Proxyclick, The Receptionist, Greetly, and Brivo Visitor support it through report templates or workflow configuration. For industrial sites and regulated facilities the first-class feature is the right pick; for low-risk office-HQ buyers the template approach is sufficient.

How much should I budget for a visitor management system in 2026?

Entry pricing ranges from $660/year (The Receptionist Basic at $55/month per location) to $500K+/year (Honeywell Pro-Watch or LenelS2 OnGuard enterprise). For a single office HQ expect $1,500-$5,000/year on a published-price kiosk-first platform (Envoy Visitor Basic + Standard, The Receptionist, Greetly). For a mid-market multi-site programme with watchlist screening and SOC 2 evidence linkage expect $25,000-$80,000/year. For an enterprise ITAR + multi-site compliance programme expect $80,000-$500,000+/year. Always ask for the renewal-escalator cap in writing, the configurable retention term, and the evacuation muster export in the pilot.

Which platform has the strongest contractor pre-screening workflow?

Sine (Honeywell) ships the strongest contractor induction workflow in the category: pre-arrival safety video acknowledgement, signed waiver, induction-validity tracking, and vehicle visitor screening with plate capture. Honeywell Pro-Watch Visitor and LenelS2 OnGuard Visitor extend this through cleared / uncleared access permissions tied to the cardholder database. RiskWatch ships contractor pre-registration and induction inside the same tenant as the SOC 2 + ISO 27001 + HIPAA assessment, which is the right pick when contractor visits are one of several compliance workflows. Envoy, Proxyclick, The Receptionist, and Greetly configure contractor flows but do not ship induction as a first-class feature.

How often is this ranking re-verified?

We re-verify the ratings, pricing triangulations, and material vendor news on this page every quarter. The current pull is dated 2026-05-15. Pricing for opaque vendors is triangulated from two or more public third-party sources (SoftwareAdvice, GetApp, Capterra Shortlist, Forrester Wave Visitor Management 2024, vendor partner-channel teardowns). If a number on this page is stale when you read it, please file the correction at sales@riskwatch.com.

Where do pure-play VMS tools still beat RiskWatch on visitor management?

Pure-play VMS tools win on workflow polish for the office-HQ use case. Envoy still beats RiskWatch on iPad kiosk consumer aesthetic, Apple Wallet visitor badge, and the breadth of first-class Slack and Microsoft Teams notifications. Sine (Honeywell) still beats RiskWatch on industrial contractor induction depth and vehicle visitor screening. The Receptionist still beats RiskWatch on two-way SMS host notification and published per-location pricing transparency. iLobby still beats RiskWatch on visitor-only enterprise policy-engine depth for pure VMS deployments. RiskWatch is the right pick when visitor management is one of several compliance workflows in one tenant, not when the only brief is kiosk-first sign-in.

Definitions

Glossary

Definitions for the acronyms and jargon used on this page. Useful for sharing with non-specialist stakeholders on the buying committee.

ITAR 22 CFR 120-130: International Traffic in Arms Regulations administered by the US Department of State Directorate of Defense Trade Controls (DDTC). Defence contractors handling controlled technical data must enforce US persons access controls, screen foreign-national visitors for deemed-export risk, and retain visitor logs for at least 5 years. Visitor management software produces the audit evidence DDTC inspectors expect.
SOC 2 CC6.4 Physical Access: SOC 2 Trust Services Criteria 2017, Common Criterion 6.4. Requires the entity to restrict physical access to facilities and protected information assets to authorised personnel. Auditors test the criterion through visitor-log review, badge issuance and retrieval, and evacuation muster lists. The visitor management system is the primary evidence source.
ISO/IEC 27001:2022 Annex A.7: ISO/IEC 27001:2022 Annex A Physical Controls. A.7.1 Physical security perimeters, A.7.2 Physical entry, A.7.3 Securing offices, rooms and facilities, A.7.4 Physical security monitoring. Visitor management software produces the operating evidence for A.7.2 (physical entry) and feeds A.7.4 (monitoring) when integrated with access control and video.
HIPAA 45 CFR 164.310: HIPAA Security Rule Physical Safeguards. (a)(1) facility access controls, (a)(2)(ii) facility security plan, (a)(2)(iii) access control and validation procedures, (a)(2)(iv) maintenance records. Hospitals and HIPAA-covered entities must produce visitor logs and access-control evidence for OCR audits and HIPAA Security Rule self-assessments.
Evacuation muster reporting: One-tap export of every person currently on-site (employees, visitors, contractors) with last-known location. Used at fire drills, lockdowns, and real evacuations. OSHA General Duty Clause and most facility security plans require it. Five platforms in this ranking ship muster reporting as a first-class feature; the other five support it via report templates.
Deemed-export visitor screening: Under ITAR and EAR, the release of controlled technical data to a foreign national inside the United States is treated as an export to that person's country of nationality. Visitor management software supports deemed-export screening by capturing visitor nationality at sign-in, screening against the DDTC Debarred List and OFAC SDN, and enforcing escort policies for cleared / uncleared visitor categories.
Watchlist screening: Automated check of visitor identity against OFAC Specially Designated Nationals (SDN), the Commerce Department Denied Persons List (DPL), the DDTC Debarred List, and customer-uploaded persona-non-grata lists. Compliance-shaped VMS platforms (RiskWatch, iLobby, Proxyclick Premium, AMAG Symmetry GUEST) ship this as a first-class feature.

Final word

So which visitor management system should you pick?

If you read this page top to bottom and one platform stood out for your visitor brief, that is your answer. The methodology weights at the top of this page let you disagree with the rank and arrive at a different first pick honestly. An office-HQ workplace-experience lead will choose differently from an ITAR-registered defence contractor security director, and both are right for their brief. The one buyer-trap we see most often is choosing a kiosk-first pure-play when the load-bearing brief was actually SOC 2 CC6.4 + ITAR + HIPAA visitor compliance; ask a finalist to produce the audit evidence in the pilot, not just the polished iPad flow.

The one thing every visitor-software buyer should do, regardless of which vendor wins the bake-off, is to insist on a 30-day working pilot with three real scenarios: a peak- occupancy evacuation muster export, an ITAR-shaped foreign- national sign-in flow with watchlist screening, and a contractor induction with safety video acknowledgement. The buyers we see lose three-year deals always lose them on retention-term opacity, multi-site rollout drag, and the exit-clause data-export terms, not on iPad workflow polish. Get the renewal-escalator cap in writing and the configurable retention term spelled out in the master subscription agreement.

If you would like the RiskWatch demo for your visitor + physical-security + compliance programme, sign up at riskwatch.com/request-a-demo. If you would like a no-strings second opinion on one of the other nine, email sales@riskwatch.com with the vendor name in the subject line and we will share what we know.