Security is our utmost priority. For starters, we follow security best practices for storing user credentials: they are never stored in plain text, and all passwords are hashed and salted using the bcrypt algorithm, a state-of-the-art algorithm designed to prevent brute-force attacks even in case of a breach. Furthermore, our implementation of TLS has received an “A+” score in Qualsys’ SSL Labs SSL Server test. We also implement proactive security measures for your projects such as password breach detection, using a huge database of leaked passwords, and brute-force attack detection. Automated rate-limiting checks and denial of service mitigation procedures are also in place. You can learn more about security at Auth0 at our security page.

Your data is safe as long as it’s stored in our servers. If you choose to stop using Auth0, exporting your data is a simple matter. Head over to the Auth0 Dashboard and go to the extensions page. Select “User Import/Export” and proceed to enable the extension. If you need help using the extension, check our docs. If you feel the export extension does not fill your needs, the Auth0 management API lets you fully inspect all the data from your account. With it, you can export all data to any format.

Yes, if you pass the 25,000 users mark, you need to select an applicable paid Plan and select the right amount of users for your use case. Paid plans let you pick a custom number of users, from 1,000 up to 100,000 or more. Several plans are available to best suit the needs of different use cases in addition to providing access to a greater amount of features that increases what you can do with Auth0.

Auth0 can run as a third-party service on the Auth0 public cloud or in an isolated private deployment. In particular, Auth0 supports four different types of deployments:

• Public Cloud: multi-tenant (shared-instance)
• Private Cloud Basic: Dedicated option that builds on Public Cloud performance and management that addresses specific data residency needs
• Private Cloud Performance: Includes all Private Cloud Basic capabilities and increases requests per second (RPS) to 500, and includes options for upgrade control, load testing, and a GEO-HA add-on.
• Private Cloud Performance Plus: Includes all Private Cloud Performance capabilities and increases RPS to 1,500

Auth0 systems have over 99.99% monthly uptime figures for most regions. You can check the current and past status and uptime figures at the status and uptime pages.

The trial period lasts 22 days. After that, the Starter Plan gets activated automatically. If you wish to continue using some of the features from our paid plans, please choose one from above.

Yes, Auth0 and our network of partners want to see you succeed! We provide a special plan for Startups that includes 100K monthly external active users, Enterprise Identity Providers, Pro MFA & Password Protection and SSO for Auth0 Dashboard free for a whole year. You can also apply for $5,000 in AWS credits. Check the requirements and apply here!

We are committed to Secure Access For Everyone and making the world a SAFEr place. With our Social Impact Program, we want to make sure your technology is running alongside your ambitions from day one. All paid plans are eligible for a Social Impact discount. Request the Nonprofit and Social Good Benefits and Pricing Sheet here which includes the Criteria and Validation Steps.