Pricing
Simple,
Transparent Pricing.
Start free and scale as you grow. Every plan includes sovereign login, Sign It file signing, and real-time webhooks — built on Holochain with zero-knowledge privacy and W3C DIDs.
Three building blocks, one price.
Every paid tier includes sign quotas and webhook endpoints. Use what you need, scale when you grow.
Sovereign Login
OAuth 2.0 + PKCE on Holochain, metered by Monthly Active Users. Free tier includes 10,000 MAU and one app. No client secrets.
File Signing Quotas
Cryptographic signatures on any file. Each tier includes a monthly quota across your org; go over and you pay a small per-signature overage, billed via Stripe.
Event Endpoints
Subscribe to real-time events from your OAuth apps — new signatures, OAuth authorizations, profile updates. HMAC-signed, 10-second timeout, auto-disabled after repeated failures. Paid tiers only.
Free
Perfect for side projects and testing
- 10,000 Monthly Active Users
- 1 app
- 1 team member
- 250 Sign It signatures/month
- No webhooks
- 10 requests/sec, 10K/day limit
- Community support
- 99.5% uptime SLA
- Basic analytics
- OAuth 2.0 + PKCE
- Flowsta Vault compatible
Spark
For early-stage startups
- 30,000 Monthly Active Users
- Up to 10 apps
- 1 team member
- 2,500 Sign It signatures/month
- Sign overage: $1 per 100
- 10 webhooks
- 25 requests/sec, unlimited daily
- Email support (48hr response)
- 99.5% uptime SLA
- Advanced analytics
- OAuth 2.0 + PKCE
- Flowsta Vault compatible
Pro
For growing companies
- 150,000 Monthly Active Users
- Up to 100 apps
- 5 team members
- 25,000 Sign It signatures/month
- Sign overage: $0.50 per 100
- 100 webhooks
- 100 requests/sec, unlimited daily
- Priority support (24hr response)
- 99.9% uptime SLA
- Advanced analytics & insights
- OAuth 2.0 + PKCE
- Flowsta Vault compatible
Enterprise
For large-scale applications
- Custom MAU limits (starts at 150K+)
- Unlimited apps
- Unlimited team members
- Custom Sign It signature quota
- Unlimited webhooks
- Unlimited API rate
- Dedicated support (4hr response)
- 99.99% uptime SLA
- Custom SLA available
- White-label options
- Compliance assistance (SOC2, GDPR)
- Dedicated account manager
- All Vault & SDK features
Feature Comparison
Every plan includes zero-knowledge privacy and Holochain-powered security. Here's what scales with your plan.
| Feature | Free | Spark | Pro | Enterprise |
|---|---|---|---|---|
| OAuth 2.0 + PKCE | ||||
| Zero-knowledge privacy | ||||
| W3C Decentralized Identifiers | ||||
| Flowsta Vault (desktop app) | ||||
| Offline desktop logins | ||||
| 24-word recovery phrase | ||||
| MAU overage handling | Hard limit | $1.00/1K | $0.60/1K | From $0.40/1K |
| Sign It signatures/month | 250 | 2,500 | 25,000 | Custom |
| Sign It overage | Hard limit | $1 / 100 signs | $0.50 / 100 signs | Custom |
| Webhooks | 10 | 100 | Unlimited | |
| Usage alerts (80% threshold) | ||||
| Advanced analytics | ||||
| Team collaboration | ||||
| Priority support | ||||
| White-label options | ||||
| Compliance assistance | ||||
| Custom SLA |
Pricing FAQs
What counts as a Monthly Active User (MAU)?
A Monthly Active User is any unique user who authenticates (logs in, registers, or verifies their session) at least once in a calendar month. The same user logging in multiple times only counts as one MAU.
What happens if I exceed my MAU limit?
On the free tier, new users will be blocked from authenticating once you reach 10,000 MAU — existing users can still log in normally. On paid plans, your service continues uninterrupted and overage charges are added to your next invoice. We'll email you when you reach 80% of your limit so you have time to upgrade if needed.
How does Sign It overage pricing work?
Every paid tier includes a monthly Sign It quota shared across your org (Spark: 2,500 signatures, Pro: 25,000). Once you exceed it, overage is metered per 100 signatures — $1 on Spark, $0.50 on Pro — and billed via Stripe at the end of the cycle. Verification stays free and unlimited on every plan. On the free tier, signing is capped at 250/month with no overage.
What events trigger a webhook?
Webhooks fire on events from your OAuth app's users — new signatures (sign.created), revocations (sign.revoked), OAuth authorizations (oauth.authorized), token revocations (oauth.token.revoked), and profile updates (user.profile.updated). More event types are planned. Payloads are HMAC-signed so you can verify they come from Flowsta.
Are webhooks available on every plan?
No — webhooks require a paid tier. Spark includes 10 webhook endpoints, Pro includes 100, and Enterprise is unlimited. They're only available on the OAuth path (web/mobile apps), since Holochain desktop apps read the DHT directly and there's nothing server-side to webhook from.
Can I switch plans at any time?
Yes! You can upgrade or downgrade at any time from your dashboard. Upgrades take effect immediately. Downgrades take effect at the start of your next billing cycle. You'll receive a prorated credit for any unused time.
Do you offer annual billing discounts?
Yes! When you upgrade from your billing dashboard, you can choose annual billing for up to 20% discount on Spark and Pro plans. For Enterprise annual billing, contact us at sales@flowsta.com.
Is Flowsta Vault included in all plans?
Yes! Flowsta Vault is free for all users. It runs on your desktop and stores your encryption keys locally. Vault features like offline logins and local-first data work on every plan — no paid upgrade required.
What payment methods do you accept?
We accept all major credit cards (Visa, Mastercard, American Express, Discover) via Stripe. Enterprise customers can also pay via invoice (NET 30 terms available).