§ Pricing

Priced for the shape of your program.

Flat workspace fee plus per-seat. Annual contracts come with a meaningful discount. We’d rather quote something that fits than make you pick a tier that doesn’t — so prices are quoted, not posted.

Team

For investigative teams inside a single business unit.

A complete case workspace for HR, ethics, compliance, and threat groups. Everything you need to take a case from intake to closure — without spreadsheets, without ticket workarounds.

Talk to sales

Cases, leads, and evidence within plan limits
Hotline, web form, email, walk-in, and internal-referral intake
AI co-pilot grounded in your case material — chat, findings, interview prep, evidence summaries
Evidence pipeline: OCR for images and PDFs, transcription for audio, entity extraction
SHA-256 verified evidence, intake, and lead-attachment chain of custody
Tamper-evident, hash-chained audit log with PDF and CSV export
Per-case access policies plus workspace-level RBAC
Multi-factor authentication via TOTP authenticator app or passkey; required for every user at public launch
PII redaction at intake
Email support during business hours

Most common

Enterprise

For larger programs and regulated industries.

Everything in Team, with higher limits, the identity and governance controls procurement asks for, and dedicated onboarding.

Talk to sales

Higher case, lead, evidence, and seat limits
SAML SSO and SCIM 2.0 provisioning with Okta and Microsoft Entra ID
Custom roles built from a 50+ permission registry; mappable to your IdP groups
Customer-managed encryption keys (BYOK) via AWS KMS or GCP KMS — every decrypt logged
Outbound signed webhooks (HMAC-SHA-256, retry-aware, secret rotation)
Per-case retention overrides on top of org-level retention policy
API tokens for programmatic access
DPA and security questionnaire support
Dedicated onboarding and migration help
Priority email response

Annual discount available. Annual contracts include locked pricing for the term and a meaningful discount versus month-to-month. Discussed during scoping — no public list price.

Enterprise — live today

The controls procurement asks about — already in the product.

Most of the items security and identity teams put at the top of a questionnaire are already implemented and entitlement-gated to Enterprise. Below — what is shipping now, not roadmap.

SAML SSO + SCIM 2.0Live

SAML single sign-on plus full SCIM 2.0 user and group provisioning. Wired for Okta and Microsoft Entra ID; directory sync reconciles daily.

Custom roles, mapped to your IdPLive

Build roles from a 50+ fine-grained permission registry and map them to your identity-provider groups. Every assignment recorded in an audit table.

Customer-managed keys (BYOK)Live

Envelope encryption with your AWS KMS or GCP KMS key. Every decrypt logged with the user, action, and case it served — so a KMS access review is a single query.

Outbound signed webhooksLive

HMAC-SHA-256 signed delivery, retry with backoff, secret rotation, and a test endpoint. Wire CaseAgent intake and retention events into your SIEM or SOAR.

Per-case retention overridesLive

Set a default retention at the workspace, then override on the cases legal needs longer. The retention sweeper respects per-case policy on every run.

API tokens for programmatic accessLive

Issue bearer tokens scoped to the workspace, with expiry and one-click revocation, for the integrations your platform team builds in-house.

Compare tiers

What’s in each tier.

Feature

Team

EnterpriseMost common

Case management

Cases, leads, evidence

Plan limits

Higher limits

Intake channels

Hotline · web form · email · walk-in · internal referral

Same + custom intake fields

AI co-pilot (chat, findings, interview prep)

Grounded in case material

Evidence AI pipeline (OCR · transcription · entity extraction)

Evidence chain of custody

SHA-256 verified

Intake & lead attachment chain of custody

SHA-256 verified

Legal hold (in-product)

Multi-section case reports (PDF · CSV)

Timeline auto-build + visual PDF export

Access & identity

Workspace SSO (SAML)

Discussed during scoping

Available via Clerk Enterprise

MFA required for every user

At public launch

Per-case access policies

Role-based access (workspace)

Standard roles

SCIM 2.0 user provisioning

Directory sync (Okta · Microsoft Entra ID)

Custom roles (50+ permission registry)

Custom role ↔ IdP group mapping

Break-glass access (executive-approved)

New-device sign-in alerts

Records & accountability

Tamper-evident audit log (hash-chained)

Audit log export (PDF · CSV)

Workspace-level retention

Per-case retention overrides

Full-org data export (ZIP, GDPR DSAR)

PII redaction at intake

Security & data

Encryption in transit

TLS 1.2+

Encryption at rest

Tenant isolation

Per-organization

Customer-managed keys (BYOK)

AWS KMS or GCP KMS

Off-site immutable backups (Object Lock)

Data residency options

On roadmap

SOC 2 Type II

On roadmap

DPA available

Reporting & integrations

Built-in metrics & dashboards

API tokens for programmatic access

Outbound signed webhooks

HMAC-SHA-256 · retry-aware

Usage & limits

AI credits per month

Included allowance · top-up available

Higher allowance · top-up available

Storage allowance

Included + metered overage

Higher + metered overage

Support

Onboarding

Self-serve guide

Guided onboarding

Support channel

Email, business hours

Email + priority response

Uptime commitment

Not yet committed

Pricing questions

Asked early, often, and reasonably.

Why no public pricing?

Investigation programs vary too widely for a sticker price to be useful. The number of programs, seats, intake channels, and security commitments materially change the shape of a deployment. We'd rather quote something that fits than have you pick a tier that doesn't.

How do you price?

A flat workspace fee plus a per-seat fee. The flat fee covers everything that doesn't scale with users — intake channels, the audit infrastructure, integrations, the AI co-pilot. The per-seat fee covers actual investigators, reviewers, and approvers in the workspace.

Is there an annual discount?

Yes. Annual contracts come with a meaningful discount versus month-to-month, plus locked pricing for the term. Most customers go annual after a short pilot.

Can we pilot before committing?

Yes. We run paid pilots with a defined scope — typically one workspace, a fixed seat count, and a clear success criterion. Pilots convert into annual contracts; if they don't, you keep the case data export.

Ready for a quote?

Tell us workspace count, rough seat count, and any security commitments you need — we'll come back with a number and a deployment plan.

Try CaseAgent now Talk to sales

§ Pricing

Priced for the shape of your program.

Team

For investigative teams inside a single business unit.

A complete case workspace for HR, ethics, compliance, and threat groups. Everything you need to take a case from intake to closure — without spreadsheets, without ticket workarounds.

Talk to sales

Cases, leads, and evidence within plan limits
Hotline, web form, email, walk-in, and internal-referral intake
AI co-pilot grounded in your case material — chat, findings, interview prep, evidence summaries
Evidence pipeline: OCR for images and PDFs, transcription for audio, entity extraction
SHA-256 verified evidence, intake, and lead-attachment chain of custody
Tamper-evident, hash-chained audit log with PDF and CSV export
Per-case access policies plus workspace-level RBAC
Multi-factor authentication via TOTP authenticator app or passkey; required for every user at public launch
PII redaction at intake
Email support during business hours

Most common

Enterprise

For larger programs and regulated industries.

Everything in Team, with higher limits, the identity and governance controls procurement asks for, and dedicated onboarding.

Talk to sales

Higher case, lead, evidence, and seat limits
SAML SSO and SCIM 2.0 provisioning with Okta and Microsoft Entra ID
Custom roles built from a 50+ permission registry; mappable to your IdP groups
Customer-managed encryption keys (BYOK) via AWS KMS or GCP KMS — every decrypt logged
Outbound signed webhooks (HMAC-SHA-256, retry-aware, secret rotation)
Per-case retention overrides on top of org-level retention policy
API tokens for programmatic access
DPA and security questionnaire support
Dedicated onboarding and migration help
Priority email response

Annual discount available. Annual contracts include locked pricing for the term and a meaningful discount versus month-to-month. Discussed during scoping — no public list price.

Enterprise — live today

The controls procurement asks about — already in the product.

Most of the items security and identity teams put at the top of a questionnaire are already implemented and entitlement-gated to Enterprise. Below — what is shipping now, not roadmap.

SAML SSO + SCIM 2.0Live

SAML single sign-on plus full SCIM 2.0 user and group provisioning. Wired for Okta and Microsoft Entra ID; directory sync reconciles daily.

Custom roles, mapped to your IdPLive

Build roles from a 50+ fine-grained permission registry and map them to your identity-provider groups. Every assignment recorded in an audit table.

Customer-managed keys (BYOK)Live

Envelope encryption with your AWS KMS or GCP KMS key. Every decrypt logged with the user, action, and case it served — so a KMS access review is a single query.

Outbound signed webhooksLive

HMAC-SHA-256 signed delivery, retry with backoff, secret rotation, and a test endpoint. Wire CaseAgent intake and retention events into your SIEM or SOAR.

Per-case retention overridesLive

Set a default retention at the workspace, then override on the cases legal needs longer. The retention sweeper respects per-case policy on every run.

API tokens for programmatic accessLive

Issue bearer tokens scoped to the workspace, with expiry and one-click revocation, for the integrations your platform team builds in-house.

Compare tiers

What’s in each tier.

Feature

Team

EnterpriseMost common

Case management

Cases, leads, evidence

Plan limits

Higher limits

Intake channels

Hotline · web form · email · walk-in · internal referral

Same + custom intake fields

AI co-pilot (chat, findings, interview prep)

Grounded in case material

Evidence AI pipeline (OCR · transcription · entity extraction)

Evidence chain of custody

SHA-256 verified

Intake & lead attachment chain of custody

SHA-256 verified

Legal hold (in-product)

Multi-section case reports (PDF · CSV)

Timeline auto-build + visual PDF export

Access & identity

Workspace SSO (SAML)

Discussed during scoping

Available via Clerk Enterprise

MFA required for every user

At public launch

Per-case access policies

Role-based access (workspace)

Standard roles

SCIM 2.0 user provisioning

Directory sync (Okta · Microsoft Entra ID)

Custom roles (50+ permission registry)

Custom role ↔ IdP group mapping

Break-glass access (executive-approved)

New-device sign-in alerts

Records & accountability

Tamper-evident audit log (hash-chained)

Audit log export (PDF · CSV)

Workspace-level retention

Per-case retention overrides

Full-org data export (ZIP, GDPR DSAR)

PII redaction at intake

Security & data

Encryption in transit

TLS 1.2+

Encryption at rest

Tenant isolation

Per-organization

Customer-managed keys (BYOK)

AWS KMS or GCP KMS

Off-site immutable backups (Object Lock)

Data residency options

On roadmap

SOC 2 Type II

On roadmap

DPA available

Reporting & integrations

Built-in metrics & dashboards

API tokens for programmatic access

Outbound signed webhooks

HMAC-SHA-256 · retry-aware

Usage & limits

AI credits per month

Included allowance · top-up available

Higher allowance · top-up available

Storage allowance

Included + metered overage

Higher + metered overage

Support

Onboarding

Self-serve guide

Guided onboarding

Support channel

Email, business hours

Email + priority response

Uptime commitment

Not yet committed

Pricing questions

Asked early, often, and reasonably.

Why no public pricing?

How do you price?

Is there an annual discount?

Yes. Annual contracts come with a meaningful discount versus month-to-month, plus locked pricing for the term. Most customers go annual after a short pilot.

Can we pilot before committing?

Ready for a quote?

Tell us workspace count, rough seat count, and any security commitments you need — we'll come back with a number and a deployment plan.

Try CaseAgent now Talk to sales