Authentication,
built in Europe.
Limen handles sign-in, MFA, API keys, and agent identity for EU teams that need GDPR by default — not by checkbox. Hosted in the EU, never anywhere else.
// create a session — REST, no SDK required const res = await fetch( 'https://api.limen.eu/v1/acme/auth/login', { method: 'POST', headers: { 'content-type': 'application/json' }, body: JSON.stringify({ email, password }), }, ) // 15-minute access token + rotating refresh const { accessToken } = await res.json()
Built for EU teams shipping to regulated markets
What you get
Three things we got tired of waiting for someone else to build.
GDPR is the default
Data stays in the EU because we run nowhere else. Signed DPA included on every paid plan, sub-processor list short and public, erasure and export built in.
Easy on purpose
One tenant, one console, readable docs and an OpenAPI spec. Built by engineers who got tired of fighting Okta and Auth0 to do simple things.
Ready for AI
First-class agent identity over MCP, scoped API keys, and machine-to-machine flows. Auth that understands half your users are not people.
Sovereignty by default
Your users' data does not leave the EU. Ever.
Limen runs on EU infrastructure, and only there. Backups are encrypted at rest in the same region that wrote them. No US parent company, no Schrems exposure, no quiet sub-processor in Virginia.
Capabilities
The auth you need. Nothing you didn't ask for.
Sign-in that works
Email and password hashed with Argon2id, plus Google sign-in — with tenant-configurable policy.
MFA
TOTP authenticator apps and email one-time codes, enforced or optional per tenant.
API keys
Scoped live and test keys for server-to-server calls, revocable from the console.
Audit log
Every auth event recorded, searchable in the console, and scoped to your tenant.
Agent identity
Connect Limen to Claude Desktop over MCP and drive scoped, read or write operations.
GDPR tooling
Right to erasure and JSON data export built in, with a 30-day grace period before hard delete.
Pricing
One number, no add-ons.
MFA, API keys, the audit log, and the signed DPA are in every paid tier.
Forever, up to 2,000 monthly active users
- Email + Google sign-in
- TOTP + email OTP
- API keys & audit log
- EU hosting
/ month · up to 10,000 MAU, then €0.015 / MAU
- Everything in Free
- Signed DPA, included
- Data export & erasure
- Email support
/ month · up to 50,000 MAU
- Everything in Starter
- Extended audit retention
- Priority support
- Custom rate limits
The closed beta is free while we onboard design partners — pricing goes live at general availability.