Pricing

Open protocol. Hosted gateway when you need it.

Protocol defines what governance is. Gateway defines how well it works.

Plans

Open Source

Free

Apache-2.0 · forever

  • Full SDK (TS + Python)
  • MCP server, all 150 tools
  • Self-host the gateway
  • IETF-tracked spec
  • Conformance test suite
  • 8 published papers
Read the spec

Production Most popular

$299 /month

For when governance has to work

  • Everything in Open Source
  • Hosted gateway, fail-closed enforcement
  • 100 active agents
  • 500K policy evaluations / month
  • 1-year audit retention
  • Production support during business hours
Get started →

Enterprise

Custom

For audit, dispute, regulatory review

  • Everything in Production
  • SSO, SAML, SCIM
  • Dedicated deployment, region of choice
  • Compliance reporting (EU AI Act, NIST AI RMF, ISO 42001)
  • Audit retention up to 7 years
  • Priority support and onboarding
Talk to us

Compatibility is permanent. Self-host today, switch to hosted later, or never. Your protocol envelopes verify the same way regardless. Compare plans in detail →

What you’re paying for.

The protocol is free because adoption is the moat. The gateway is paid because durable governance evidence is operational infrastructure someone has to run.

01

A gateway you don’t have to run.

Operating an enforcement gateway means uptime, durable storage, key management, key rotation, and version migration. Production pays for the infrastructure someone has to operate so your agents can act in production without your team building it.

02

Receipts that survive your auditor.

A signed receipt has to still verify in a year, after database migrations, after policy versions change. We hold the keys, the snapshots, and the verification primitives current. Open Source can do this if you do it yourself. Production means we do it.

03

A protocol you can leave.

Apache-2.0 means you can self-host any time. Pricing does not lock you in. Your delegation chains, your receipts, your conformance posture, all of it portable. The gateway is paid by choice.

Common questions.

What happens if I exceed 100 active agents or 500K evaluations on Production?

The gateway hard-caps at your plan limit and starts refusing new agent registrations or evaluations until you upgrade. Approaching-limit alerts surface in your dashboard at 80%. If you anticipate sustained volume past 100 agents or 500K evaluations, talk to us and we will move you onto Enterprise with the right cap and a contract.

Why no free trial of Production?

Open Source is already free forever. If you want to evaluate hosted enforcement before paying, run the self-hosted gateway against the same SDK. The protocol envelopes are byte-identical either way, so a Production migration is a config change.

What is covered by "audit retention"?

Every action through the hosted gateway produces a signed receipt. Retention is how long we keep those receipts queryable in the audit surface, including the policy version and delegation chain that authorized each one. After retention, receipts remain verifiable forever via the open verification primitives, but live querying ends.

Is there an SLA?

Production includes commercially reasonable uptime targets but is not sold with a contractual SLA. Enterprise includes a contractual SLA negotiated to your workload. We would rather honor what we sign than publish a number we cannot back.

Does Production include the same protocol features as Enterprise?

Yes. The protocol is the same across every tier. Pricing scales with retention duration, deployment isolation, compliance reporting, and the support model. Every tier has the same protocol primitives.

What if I start on Production and need more later?

Most teams cross into Enterprise when one of three things happens: retention requirements past 1 year, single-tenant deployment, or compliance reporting against a named framework. When that happens, the conversation is contractual.

For AI agents: llms-full.txt · MCP descriptor