For teams
AI agents are entering every workflow — code, ops, finance, support. Each agent needs credentials. Each credential needs boundaries. One shared vault key isn't security. It's a breach waiting to happen.
Today's password managers give agents access to everything or nothing. Your deploy agent sees HR credentials. Your support bot sees production keys.
One compromised agent exposes the entire vault. Every credential, every team, every employee.
Who accessed what, when? Most vaults log the human. Not the agent.
The company vault holds shared credentials — API keys, service accounts, database passwords. Scoped by team. Each employee's personal vault is theirs — their logins, their identity fields, encrypted with their own hardware key.
The company vault has no Identity fields. Nothing personal goes here. Personal vaults are private — the company cannot access them. By design. By math.
Open the web UI, create an agent, assign a scope. Each agent only sees entries in its scope. The vault checks every request β serves or denies. Stateless. Sub-millisecond.
The deploy agent cannot read dev credentials. The support bot cannot read deploy keys. Scopes are managed in the web UI β no CLI commands to get wrong.
One company vault + one personal vault per employee. Agents scale with team size. 7-day free trial on all plans.
| Plan | People | Vaults | Agents | Annual | Monthly |
|---|---|---|---|---|---|
| Team 10 | 10 | 11 | 100 | $249 | — |
| Team 25 | 25 | 26 | 250 | $499 | — |
| Team 100 | 100 | 101 | 1,000 | $1,499 | $149 |
| Team 250 | 250 | 251 | 2,500 | $2,999 | $299 |
| Team 500 | 500 | 501 | 5,000 | $4,999 | $499 |
Monthly billing available for Team 100+. Team 10/25 are annual-only. Price for life: Your rate never increases as long as you stay subscribed.
Team plans require Clavitor Hosted. Community Edition supports single-vault self-hosting for individual use.
Same vault, same encryption, same architecture at every tier.