API Pricing
The core registry is free forever. Paid plans add enterprise features for production integrations.
Feature Comparison
Detailed breakdown of what's included in each plan
| Feature | Community | Pro | Teams | Enterprise |
|---|---|---|---|---|
Signals & Registry Access to all 1,143 signals across 12 frameworks | ||||
Control Mappings 1,308 signal-to-control mappings | ||||
JSON Schemas Validation schemas for all data types | ||||
Tool Mappings 1,854 mappings from 20 security tools to CSE signals | ||||
Finding Templates 1,143 actionable templates with remediation guidance | ||||
Normalization APIComing Soon Normalize tool findings to CSE format | ||||
Framework Crosswalks 93K+ control mappings across 132 framework pairs | ||||
Gap Analysis API Identify compliance gaps with remediation guidance | ||||
API Rate Limits Requests per minute / per day | 60/min, 10k/day | 300/min, 100k/day | 600/min, 500k/day | Custom |
Findings StorageComing Soon Store and query findings at scale | 10,000 findings | 100,000 findings | Unlimited | |
Artifacts StorageComing Soon Upload and retrieve evidence artifacts | 1 GB | 10 GB | Custom | |
WebhooksComing Soon Real-time notifications for events | 5 webhooks | 25 webhooks | Unlimited | |
Analytics DashboardComing Soon Compliance trend analysis and insights | ||||
Team MembersComing Soon Users per organization | 1 | 3 | 15 | Unlimited |
API Keys Number of API keys | 1 | 5 | 25 | 100 |
Audit Logs API activity and access logs | 7 days | 90 days | 1 year+ | |
SSO / SAMLComing Soon Single sign-on integration | ||||
Custom IntegrationsComing Soon Dedicated integration support | ||||
SLA Uptime guarantee | 99.5% | 99.9% | 99.99% | |
Support Support channels | Community | Priority Email | Dedicated CSM |
Frequently Asked Questions
Will the Community tier always be free?
Yes. Access to signals, mappings, and schemas will always be free. This is core to our mission of providing open infrastructure for compliance interoperability.
What happens if I exceed rate limits?
Requests exceeding rate limits will receive a 429 status code. You can wait for the rate limit window to reset, or upgrade to a higher tier for increased limits.
Can I switch plans at any time?
Yes. You can upgrade or downgrade your plan at any time. When upgrading, you'll get immediate access to new features. When downgrading, changes take effect at the end of your billing cycle.
Do you offer annual billing discounts?
Yes. Annual billing saves 20% compared to monthly. Contact us for Teams and Enterprise annual pricing.
Can I use CSE data in commercial products?
Yes. CSE data is licensed under Apache 2.0. You can use signals, mappings, and schemas in commercial products. Attribution is appreciated but not required.
What's the difference between signals and findings?
Signals are canonical definitions of compliance-relevant conditions (e.g., “Unencrypted PHI Storage”). Findings are instances where a signal is observed in a specific context. The Community tier provides signal definitions; paid tiers add findings storage and management.
What payment methods do you accept?
We accept all major credit cards (Visa, Mastercard, American Express) and can accommodate invoicing for Teams and Enterprise plans.
Ready to get started?
Start with the Community tier—no credit card required. Upgrade when you're ready.