Account & Security
Understanding rate limits
How rate limiting works and what to do when you hit the limit.
Rate limits by plan
| Plan | Requests/month | Requests/day | Requests/second |
|---|---|---|---|
| Free | 5,000 | 1,000 | 5 |
| Hobby | 25,000 | 2,000 | 10 |
| Starter | 100,000 | 5,000 | 20 |
| Pro | 300,000 | 15,000 | 40 |
See Pricing for full plan details.
How rate limiting works
- Monthly quota: Resets on the 1st of each month at midnight UTC
- Daily quota: Resets at 00:00 UTC — prevents your entire monthly allowance being used in one day
- Per-second limit: Enforced with a sliding window — bursts above the limit get a
429response
Rate limit headers
Every API response includes these headers:
X-RateLimit-Limit: 25000
X-RateLimit-Remaining: 24856
X-RateLimit-Reset: 2025-02-01T00:00:00ZWhat happens when you exceed the limit
You'll receive a 429 Too Many Requests response:
{
"detail": "Rate limit exceeded. Please retry after the reset window."
}Tips to stay under the limit
- Cache results: IP risk data doesn't change every second. Cache lookups for 5–15 minutes.
- Use bulk endpoint: If you need to check many IPs, use the bulk lookup endpoint instead of individual requests.
- Monitor usage: Check your Dashboard → Stats to track consumption.
- Upgrade: If you consistently hit limits, upgrade your plan.
