Pricing built for AI prompt DLP & secure AI adoption.

What Every Plan Includes

The protection engine stays the same across every tier. A $19 Starter user receives the same real-time inspection and enforcement capabilities as a $149 Enterprise user. The difference is which AI models, integrations, and monitoring surfaces are available.

Real-Time Prompt Inspection — Every prompt is inspected before it reaches the AI provider. Blocked content never leaves your environment.
30+ Sensitive Data Types Detected — Detects SSNs, ITINs, national IDs, PCI payment card data, PHI, NPI, DEA identifiers, API keys (AWS, GitHub, Stripe, OpenAI, Anthropic, and more), private keys, classified markings (TOP SECRET, CUI, FOUO), and internal network information.
Regulatory Policy Presets — One-click policy bundles for HIPAA, PCI-DSS, GDPR, GLBA, and Defense/CUI environments. Customize controls by category or tenant.
Secure Document Upload Inspection — Scan PDF, DOCX, TXT, CSV, and Markdown files using the same inspection engine applied to prompts. No uploaded content is persisted to disk.
Compliance Audit Logging — Every prompt, policy action, detection event, and administrative change is logged for audit and compliance review.
Microsoft Entra ID Single Sign-On — Azure-native authentication with centralized identity management and no additional user accounts to maintain.
Per-Tenant Policy Enforcement — Configure Block, Warn, or Allow actions by data category and instantly apply regulatory policy templates across tenants.

Starter

$16/user/month

billed annually

$19/user/month

billed monthly

For teams that want a secure, approved way to use ChatGPT/OpenAI with ChatGPT DLP included.

Features:

Secure ChatGPT/OpenAI access
Microsoft SSO included
Prompt text and contextual AI inputs removed at the end of each day
Basic sensitive data detection
Prompt warnings and blocking
Basic usage dashboard
100 Daily AI messages per user
Monthly OpenAI usage allowance
Usage cap to control API costs

Pro

$50/user/month

billed annually

$59/user/month

billed monthly

For teams that want secure access to multiple leading AI models with AI prompt DLP included.

Features:

Everything in Starter
ChatGPT/OpenAI access
Claude access
Gemini access
Additional supported models
Model selection by user or team
Prompt warnings and blocking
Standard sensitive data masking
Standard policy controls
200 Daily AI messages per user
Audit logs with 1-year retention
Priority support
Shadow AI browser monitoring and custom policy enforcement (block sensitive data in AI solutions you don't manage).
Higher monthly usage allowance across supported models
Admin visibility into usage by user, model, and team

Enterprise

$149/month

Custom, starting

For organizations that need custom AI data protection, company-specific filters, and enterprise controls.

Features:

Everything in Starter and Pro
Advanced AI Model Access (i.e. GPT-5, Claude Opus 4.7, Options for Additional Advanced Models as they are Released)
Company-specific sensitive data fingerprinting
Custom terms, patterns, identifiers, and restricted language
Custom policy rules by department, data type, and use case
Advanced prompt blocking and masking rules
Bring your own AI provider/API keys
Customer-approved AI model routing
400 Daily AI messages per user
Microsoft SSO included
Shadow AI browser monitoring and custom policy enforcement (block sensitive data in AI solutions you don't manage).
SCIM and RBAC
Unlimited data retention
API access
SIEM export
DNS log monitoring for AI usage
Custom onboarding and training
Dedicated support

Transparent Pricing. Zero Surprises.

Frequently Asked Questions

Why daily message caps? Can I get unlimited usage?

A single user running heavy queries on Claude Opus can cost more in a day than an entire team’s monthly subscription. Caps protect predictable pricing — yours and ours. If your users regularly hit a cap, that’s the signal to upgrade.

Also, we don’t sell unlimited at any tier. We’d have to charge several hundred dollars per user per month to underwrite the worst case, and most teams wouldn’t come close to using it. Enterprise with volume pricing is the right answer for very heavy use. We can customize usage tiers for your organization upon request.

Can Enterprise customers bring their own AI provider or API keys?

Yes. Enterprise customers can connect approved OpenAI, Anthropic, Google, or other provider API keys while still using AILeakShield’s inspection engine, policy controls, audit logging, and custom data protections.

Is Microsoft Entra ID / Microsoft SSO included?

Yes. Microsoft SSO is included in every plan.

Where does my data go?

Blocked content never leaves AILeakShield — caught by the inspection engine in memory and never sent to any AI provider. We never store sensitive data and we don’t allow it to get to the AI providers either. Allowed content is forwarded to OpenAI, Anthropic, or Google through your selected model. We retain only a redacted audit record (the decision, the category, a masked preview) — never the raw prompt content. Blocked-tier events store only a category placeholder (e.g., [Blocked: ssn]), not the original text.

Can we start with one plan and upgrade later?

Yes. Customers commonly start with secure AI portal access and later expand into browser-wide protection, shadow AI monitoring, advanced models, and enterprise policy controls as adoption grows.

Will users be asked to install something?

No. Users login to app.aileakshield.com like they would any other AI solution. They select their preferred AI model and use it like any other chat.

There is an optional browser monitoring solution included with our pro and enterprise tier. This allows you to monitor for shadow AI throughout your environment. It also allows you to apply policy to the browser that you have in the secure workspace. Your IT team pushes the extension through Microsoft Intune, Chrome Enterprise, Active Directory Group Policy, or JAMF — exactly the same way they push any other managed extension. Users see the AILeakShield icon appear in their toolbar, sign in once via your existing Microsoft SSO (typically silent), and then forget it exists until it blocks a prompt.

Do you support compliance frameworks beyond the presets?

The five built-in presets (HIPAA, PCI, GDPR, GLBA, Defense / CUI) cover most enterprise needs out of the box. The underlying policy engine is fully tunable per category — dial detection up or down to match internal frameworks (ISO 27001, NIST 800-171, FERPA, SOX, etc.). Enterprise customers can also add custom regex patterns for organization-specific data (project codenames, customer identifiers, internal product names). If you require a framework not already covered, just let us know, we add it as a feature request and respond quickly.

What does Enterprise unlock over Pro?

Three things you can’t get on any other tier: (1) access to the most advanced AI models (GPT-5, Claude Opus 4.7), (2) the enhanced shadow-AI monitoring suite — live dashboard, DNS log import, API-key audit, (3) custom regex patterns for organization-specific data — plus longer audit retention, higher per-user message caps, signed BAA for HIPAA workloads, volume pricing, and a named customer success manager.

Give your workforce secure AI access before shadow AI becomes a bigger risk.

AILeakShield helps your team use the AI tools they already want with prompt protection, Microsoft SSO, usage controls, daily prompt text deletion, and enterprise-ready security controls.