Pricing built for B2B SaaS.

An MAU is a unique end-user identity that completed at least one successful authentication ceremony (passkey, magic link, OAuth callback, SAML ACS, or refresh token exchange) within a 30-day rolling window in your project. Dashboard operators (your team) do not count toward MAUs; end users do. The same human identity counted once per project per month, even if they belong to many of your customer organizations.

An SSO connection is a single configured SAML 2.0 or OIDC integration tied to one customer organization. If Acme Corp configures Okta SAML, that is one connection. If they later add a second Azure AD connection for a subsidiary, that is two. SCIM directories are billed separately as SCIM directories; an SSO connection without SCIM is one connection.

We do not lock you out mid-month. Overages are billed at the per-1,000-MAU rate listed in the comparison matrix and shown in your dashboard usage panel before the cycle closes. If sustained usage suggests you should upgrade to the next tier we will surface that recommendation explicitly; you are never auto-upgraded.

Yes. The Developer tier is free forever for projects under 1,000 MAUs. It includes one SSO connection so you can ship a real B2B product without ever giving us a credit card. We rate-limit the API at sane defaults; no time-bombs.

Annual saves you two months — pay for 10, get 12. There is no other lock-in; you can downgrade at any renewal. The price shown for annual in the tile is the total annual amount, not a per-month equivalent dressed up.

Pick Business when you are above ~250k MAUs, when a 99.99% SLA is a deal-blocker in your enterprise procurement reviews, or when a customer's legal team needs a custom DPA (not the standard one). Business also unlocks the priority SAML configuration queue — Growth uses the standard queue, which is fine, but Business jumps to the front. The 2M MAU pool included with Business is the same pool Enterprise quotes typically start from, so it is the natural step before negotiating Enterprise.

Pro-rated refunds within 30 days of an upgrade or initial purchase, no questions asked. After 30 days, plan changes prorate forward to the next renewal but are not refunded backward. Enterprise contracts have their own refund terms; talk to your account manager.

Prices shown are exclusive of applicable sales tax, VAT, or GST. We collect tax where we are registered to do so and itemize it on every invoice. Tax-exempt organizations can upload their exemption certificate from the billing page.

USD is the canonical billing currency. We can invoice in EUR or GBP on Enterprise contracts at the prevailing 30-day average exchange rate.

Yes. The Authio CLI ships an `authio import` sub-command for each. We never import password hashes (we have no place to put them) — existing users are enrolled into passkeys via a magic-link first login. Progressive migration is the default. See the docs for runbooks.

Yes. Pre-seed and seed startups (≤ $5M raised, ≤ 2 years old) get the Growth tier free for 12 months. Registered 501(c)(3) non-profits get a permanent 50% discount on any paid tier. Email founders@authio.com or send a verifiable cap-table link.