AuthLoop

Terms of Service

Last updated: April 15, 2026

1. Agreement to Terms

By accessing or using AuthLoop (“Service”), you agree to be bound by these Terms of Service (“Terms”). If you do not agree to these Terms, do not use the Service.

AuthLoop is a product of GoSi Tech (“we”, “us”, or “our”). The Service is available at authloop.ai.

2. Description of Service

AuthLoop is auth infrastructure for agent platforms where the end user owns the credential. The Service enables you to:

  • Connect AuthLoop to any CDP-compatible agent runtime (Playwright, Browser Use, Stagehand, Browserbase, OpenClaw, Puppeteer, or any Chromium browser) via our SDK or MCP server
  • Create time-limited, PIN-gated sessions when your agent encounters an authentication wall
  • Deliver session links to your end users on the channel you already operate (push, SMS, email, in-app, your own bot) via signed webhook delivery (Svix)
  • Allow the end user to resolve the wall on their own device over an end-to-end encrypted WebSocket stream so the agent can continue

AuthLoop does not store, intercept, or log any credentials, passwords, or authentication codes. The relay forwards ciphertext it cannot decrypt; frames are never persisted.

3. Account Registration

To use the Service, you must:

  • Be at least 16 years old
  • Provide accurate and complete registration information
  • Maintain the security of your account credentials
  • Notify us immediately of any unauthorized access

You are responsible for all activities that occur under your account, including any use of your API keys.

4. Subscription Plans and Billing

4.1 Plans

AuthLoop is sold as base-fee plans with included monthly sessions and tiered per-session overage. The authoritative plan details and current pricing are published at authloop.ai/#pricing. At the time of last update, the plans are:

  • Free: 100 sessions per month, hard-capped. Managed relay, community support.
  • Starter: $299/month. 3,000 sessions included; $0.20 per session overage with a soft cap at 10,000 sessions. 99.5% uptime, 24h email support.
  • Growth: $899/month. 10,000 sessions included; $0.18 per session overage (uncapped). 99.7% uptime, SSO, 15-day audit log, priority email support.
  • Scale: $1,999/month. 25,000 sessions included; $0.15 per session overage (uncapped). 99.9% uptime, Slack Connect, SSO, 30-day audit log.
  • Enterprise: From $14,999/month. 200,000 sessions included; $0.10 per session overage. 99.95% uptime, BAA, SOC 2 Type II, GDPR DPA, 12-month audit log with SIEM export, 12-month contract minimum.

4.2 Billable Session

A billable session is every session that reaches session_id issued — the moment the relay allocates a Durable Object and returns a session URL. This matches industry convention (e.g. Twilio: SMS-sent; Stripe: transaction-attempted). We automatically credit up to 5% of monthly billed sessions that go unresolved within the session TTL, applied at invoice.

4.3 Early Access

During the early access period, we may waive or defer billing for individual accounts. We will provide at least 30 days notice before billing begins or before any pricing changes take effect for existing paying customers.

4.4 Billing

Paid subscriptions are billed monthly unless you select an annual contract (available on Growth, Scale, and Enterprise with a 15% base-fee discount; overage rates unchanged). Payments are processed by Stripe. All prices are in USD.

4.5 Usage Limits and Caps

Each plan defines its own cap behaviour:

  • Free: Hard-capped at 100 sessions per month. New session requests return an upgrade_required error above the cap.
  • Starter: Soft cap at 10,000 sessions per month. Above the soft cap, new sessions return upgrade_required.
  • Growth, Scale, and Enterprise: Metered (uncapped). Overage accrues at the published per-session rate. You may configure a monthly spend cap per API key; sessions above the cap return a specific error the platform can handle.

5. API Keys and Security

API keys authenticate your AI agents with AuthLoop. You are responsible for keeping your API keys secure:

  • Do not commit API keys to public repositories
  • Do not share API keys in plain text or with unauthorized parties
  • Revoke compromised keys immediately from your dashboard
  • Use environment variables to store API keys

We are not responsible for any unauthorized use resulting from your failure to secure your API keys.

6. Session Data and Credentials

6.1 How Sessions Work

During a session, AuthLoop:

  • Streams rendered pixels (screen images) from the agent's browser to your device via an encrypted WebSocket connection
  • Relays your keystrokes to the agent's browser via an encrypted data channel
  • Logs session metadata (service name, duration, status) for your dashboard

6.2 What We Don't Do

  • We do not see, store, or log any passwords, OTPs, or authentication codes
  • We do not access DOM content, form data, or page source
  • We do not retain any screen content after a session ends

6.3 Your Responsibility

You are solely responsible for ensuring you have authorization to access the accounts and services you use with AuthLoop. Do not use AuthLoop to gain unauthorized access to any account or system.

7. Acceptable Use

You agree not to:

  • Violate any applicable laws or regulations
  • Use the Service to gain unauthorized access to accounts or systems you do not own or have permission to access
  • Share your API keys with unauthorized parties
  • Attempt to reverse engineer, decompile, or interfere with the Service
  • Resell or redistribute the Service without authorization
  • Use the Service in a way that could harm, disable, or impair it
  • Exceed your plan's usage limits through automated means
  • Use the Service for phishing, fraud, or any illegal activity

8. Open Source Components

The AuthLoop SDK and MCP server are released under an open source license at github.com/authloop/authloop. Your use of open source components is governed by their respective licenses. The AuthLoop platform (this website and API) is proprietary.

9. Intellectual Property

The Service, including its design, features, and code, is owned by GoSi Tech and protected by intellectual property laws. You may not copy, modify, or create derivative works of the proprietary portions of the Service without our permission.

10. Cancellation

You may cancel your subscription at any time from your dashboard. Upon cancellation:

  • You will retain access to paid features until the end of your current billing period
  • Your account will revert to the Free plan after the billing period ends
  • Your data (API keys, session history) will be preserved for 30 days

11. Refund Policy

You may request a full refund within 14 days of any purchase, no questions asked. To request a refund, email support@authloop.ai with your account email. Refunds are typically processed within 5–10 business days via your original payment method.

12. Disclaimer of Warranties

THE SERVICE IS PROVIDED “AS IS” AND “AS AVAILABLE” WITHOUT WARRANTIES OF ANY KIND, EXPRESS OR IMPLIED. WE DO NOT WARRANT THAT THE SERVICE WILL BE UNINTERRUPTED, ERROR-FREE, OR COMPLETELY SECURE.

13. Limitation of Liability

TO THE MAXIMUM EXTENT PERMITTED BY LAW, GOSI TECH SHALL NOT BE LIABLE FOR ANY INDIRECT, INCIDENTAL, SPECIAL, CONSEQUENTIAL, OR PUNITIVE DAMAGES, OR ANY LOSS OF PROFITS OR REVENUES, WHETHER INCURRED DIRECTLY OR INDIRECTLY.

OUR TOTAL LIABILITY FOR ANY CLAIMS ARISING FROM THESE TERMS OR THE SERVICE SHALL NOT EXCEED THE AMOUNT YOU PAID US IN THE 12 MONTHS PRECEDING THE CLAIM.

You are solely responsible for any unauthorized access to your accounts resulting from your use of the Service, and for any actions taken by your AI agent before, during, or after a session.

14. Indemnification

You agree to indemnify and hold harmless GoSi Tech and its officers, directors, employees, and agents from any claims, damages, or expenses arising from your use of the Service or violation of these Terms.

15. Modifications to Service

We may modify, suspend, or discontinue the Service at any time. We will provide reasonable notice for significant changes that affect your use of the Service.

16. Changes to Terms

We may update these Terms from time to time. We will notify you of material changes by email or through the Service. Continued use after changes constitutes acceptance of the new Terms.

17. Governing Law

These Terms are governed by the laws of India. Any disputes shall be resolved in the courts of Bangalore, India.

18. Severability

If any provision of these Terms is found unenforceable, the remaining provisions will continue in effect.

19. Contact Us

If you have questions about these Terms, contact us at:

Email: support@authloop.ai

GoSi Tech, Bangalore, India