You don't have control over your AI usage. Keel fixes that.
Every request through Keel is a permit decision — policy evaluation, budget enforcement, and audit in one pipeline. One governed request = one decision.
Starter
Meaningful control in minutes.
forever
10,000 governed requests / month
- Tamper-evident audit chain
- FreeTSA-backed RFC 3161 timestamp receipt
- Pre-built policy templates — your policy surface
- 1 project, all providers
- 1 same-provider fallback
- 30-day audit record retention
- Community support
Production
For teams putting governed AI requests into production.
1,000,000+ governed requests included
- Cross-provider runtime enforcement
- Custom policy + firewall rules above platform baseline
- Signed compliance exports (Ed25519)
- Externally anchored checkpoints
- Dual public CA-operated RFC 3161 timestamp witnesses
- Independent verifier CLI
- Governance decision snapshots
- Reconciliation usage ledger + timeline replay
- 180-day audit retention
- Founder-led technical onboarding session
- Security-review packet
- Email support, target 1 business day
Enterprise
For regulated teams that need organization-wide controls, legal commitments, and auditor-grade evidence.
5,000,000 governed requests included
- Everything above, plus:
- Customer-selected TSA eligibility
- Customer-directed trust topology review
- SSO/SAML
- PDF audit packs + advanced evidence exports
- Org dashboard + teams and roles
- Approval workflows (two-person rule)
- BAA, custom DPA available on request
- Custom retention + legal hold
- 365-day retention
- Dedicated support, 4hr SLA
Independently verify signed decision evidence — without relying on Keel's dashboard.
Build it in a weekend. Maintain it forever.
You can build a basic AI gateway in a weekend.
But a control plane isn't a gateway.
- Retries and duplicate requests
- Cost mismatches and billing drift
- Incomplete audit trails under partial failures
- Policy inconsistencies across services
That's the system you now own. Keel gives you that from day one.
| Feature | Starter | Enterprise |
|---|---|---|
| Governed requests/mo | 10,000 | Custom |
| Overage | Custom | |
| Projects | 1 | Usage-scaled |
| API keys | 2 | Usage-scaled |
| Providers | All | All + custom |
| Policy authoring | Templates | Full custom + org floor |
| Routing fallback | 1 same-provider | Cross-provider + enterprise controls |
| Prompt firewall † | Platform baseline | Baseline + org strengthening |
| Audit record retention | 30 days | 365 days + custom / legal hold |
| Evidence exports | Signed JSON + PDF + advanced evidence | |
| Independent verifier CLI | ||
| Externally anchored checkpoints | Status signal | Verifiable artifact |
| RFC 3161 timestamp witnesses | FreeTSA single witness | Dual public CA + customer-selected TSA eligibility |
| Usage ledger | Reconciliation | |
| Timeline replay | ||
| Org dashboard + teams | ||
| Approval workflows | Two-person rule | |
| SSO/SAML | ||
| Dedicated SLA | ||
| Support | Community | Dedicated, 4hr |
| Compliance | BAA, DPA on request | |
| Deployment | Shared cloud | Shared cloud |
Teams requiring SSO/SAML, BAA, dedicated SLA, custom retention, or advanced evidence anchoring typically use Enterprise.
† Prompt firewall coverage is route-dependent. Starter gets the platform baseline; Enterprise adds custom rules above it.
After you get access
Three steps to governed AI.
Generate an API key
Create a project and API key in the dashboard.
Add a governed request
One API call before each AI action. Keel returns a permit decision.
Inspect decisions
View permit decisions, usage, and audit data in the dashboard.
Still thinking about it?
The questions teams usually ask before they commit.