Maya
Enterprise feature

Bring your own provider keys

Use Anthropic, OpenAI, and Google API keys you already own. Pay providers directly, keep billing on your contracts, and stay in full control of model spend.

See Enterprise pricingTalk to sales

Your keys, your billing

Anthropic, OpenAI, and Google calls go straight to the provider on your account. Maya never marks up tokens you bring.

Encrypted at rest

Keys are stored in your workspace vault, encrypted server-side, and only decrypted inside the secure inference path.

Workspace-admin gated

Workspace admins decide whether BYOK is enabled. Members see a clear locked banner when it is off, with no surprise charges.

Free models still free

Lovable Cloud's free model pool keeps working alongside your keys, so you only spend on the premium calls you choose.

Security model

  • Keys are stored encrypted in your workspace vault, isolated per workspace by row-level security.
  • Decryption only happens server-side inside the inference call path, never in the browser.
  • Plan changes and BYOK overrides are append-only audited (workspace, actor, reason, timestamp).
  • Workspace admins can disable BYOK at any time, instantly cutting off new BYOK requests.
  • Keys are validated for shape before saving, so typos fail fast instead of silently dropping calls.

FAQ

Who can turn BYOK on?
BYOK is included with the Enterprise plan. Workspace admins enable it under Org → Identity. Free and Team plans always use Lovable Cloud's central key.
Where are my keys stored?
In your workspace vault, encrypted at rest. Only the secure inference function decrypts them per-request, and they are never sent to other tenants or third parties.
Can I revoke a key?
Yes. Removing a key in Settings instantly stops new requests from using it. Workspace admins can also disable BYOK for the entire workspace at any time.
What happens if a provider key is invalid?
Maya validates the key format inline before saving and warns you in the composer if a model is selected without a working key. Failed calls fall back to a clear error, never silent overcharges.
Do super admins ever bypass plan gating?
Only via auditable, time-bound overrides. Every grant and revoke is recorded in the admin plan-audit log with actor and reason.
Enterprise

Ready to bring your own keys?

Upgrade to Enterprise or talk to sales about BYOK rollout for your team.

See pricingContact sales