One Kaito. Every client.
Manage shared 2FA codes and SMS for every client, with per-client groups, contractor expiry, and a clean removal flow when an engagement ends.
The math is brutal without a system.
- 20 staff. 50 clients. ~30 logins per client. That's 1,500 access relationships.
- Half use SMS 2FA on a number nobody at the agency owns.
- Contractors come and go monthly. You can't realistically rotate every credential they touched.
- The client wants an audit trail when a campaign goes sideways. You don't have one.
Built around the engagement lifecycle.
One group per client. Add team members to whichever clients they work on. Done.
Provision a number for each client whose 2FA flows go to SMS. Live to whoever's on that account today.
Bring on a contractor for a 6-week engagement. Add them with an expiry date. They auto-revoke at the end.
Export the engagement audit log, remove the team's access, optionally hand over the encrypted vault to the client.
Most agencies sit on Business.
Business — 50 seats, scoped API, IP allow-list, hash-chained audit log. Above 50 seats, Enterprise with custom DPA, BYOK encryption, 7-year audit retention, and volume discounts at 100 / 250 / 500 seat tiers.