Does the developer periodically perform penetration testing?
Not answered
Does the developer have a dedicated security and privacy point of contact for such issues or questions?
Not answered
Does the app restrict redirects and forwards only to approved destinations, or show a warning when redirecting to potentially untrusted content?
Yes
Our app only allows redirects to a select few destinations and does not permit users to determine or add a redirect destination. Additionally, we verify user input data before authorizing any operations, such as forwards or redirects, and we validate the URLs/destinations, permitting only those on the approved list.
Does the app protect against mass parameter assignment attacks?
Yes
Our monday.com app safeguards against mass parameter assignment attacks by: a) Whitelisting Parameters: Only allowing modifications to predefined and whitelisted parameters. b) Strong Parameter Validation: Ensuring data received is of expected type, format, and range. c) Authentication and Authorization: Requiring users to authenticate and checking their permissions before processing user data. d) Object-Level Security: Ensuring users can only modify authorized objects within their monday.com workspace. These combined measures ensure robust protection against mass parameter assignment attacks.
Does the app perform encoding and sanitization on all user supplied parameters to protect against Cross-Site Scripting?
Yes
To prevent XSS (Cross-Site Scripting) attacks, we implement the following measures for encoding and sanitizing all user-supplied parameters where relevant: a) Input Validation: We validate all user input to ensure it conforms to expected formats and does not contain any malicious code or characters. b) Output Encoding: We encode all user-supplied data before rendering it in the HTML output. This ensures that any potentially malicious code inserted by the user is treated as plain text and not executable script. c) Use of Content-Security-Policy (CSP) Header: We implement CSP headers to restrict the sources from which content can be loaded and executed by the browser. d) Use of Sanitization Libraries: We use established libraries and frameworks that have built-in sanitization features to automatically sanitize user input and protect against XSS attacks.
Does the developer protect all state-changing actions against Cross-Site Request Forgery (CSRF)?
Yes
To protect all state-changing actions against CSRF (Cross-Site Request Forgery), we implement a combination of measures depending on relevancy for the app. Most of this is done by the frameworks we use and include the following: a) Use of Anti-CSRF Tokens: We generate unique tokens for each session and include them in forms and AJAX requests. The server verifies the token before processing any state-changing request. b) Same-Site Cookies: We set the 'SameSite' attribute for cookies to 'Strict' or 'Lax' to ensure the browser only sends the cookie in a first-party context. c) Checking the Origin and Referer Headers: We validate the origin and referer headers of the HTTP request to ensure it came from a trusted domain. d) Requiring Authentication: For any state-changing action, we require the user to be authenticated and authorized. e) Implementing Security Headers: We implement HTTP security headers like Content-Security-Policy (CSP) to control the sources from which content can be loaded.
Does the developer have mechanisms to notify monday.com in case of a security breach?
Yes
In case of a security breach we would do the following: a) Assessment: Immediately assess the nature, scope, and potential impact of the breach. b) Notification: Notify monday.com within 24 hours of discovering the breach via email or phone call, providing all available details of the breach, including its nature, the data affected, potential consequences, and measures taken to address it. c) Updates: Provide continuous updates as more information becomes available and as additional steps are taken to address the breach. d) Compliance: Ensure compliance with all legal and regulatory requirements for data breach notification.
Does this developer have a process for installing application-level updates and security patches for the service (such as software packages and databases)?
Yes
We approach application level updates and security patched with the following steps: a) Monitor: Keep an eye out for any updates or security patches for your software. b) Evaluate: Decide if the updates are necessary and plan when to install them. c) Backup: Make a copy of your data and settings before updating. d) Test: Try the updates in a test environment to make sure they work properly. e) Deploy: Install the updates in the real (production) environment.
Compliance
Is the app certified with the information security standard ISO/IEC 27001:2022?
Not answered
Is the app compliant with the Health Insurance Portability and Accountability Act (HIPAA)?
Not answered
Is the app certified with System and Organization Controls (SOC 2 or SOC 3)?
Not answered
Is the app compliant with the General Data Protection Regulation (GDPR)?
Not answered
Data
Does the app send any data outside of monday.com? If yes, indicate whether the data is customer-submitted (e.g., board names, item names, doc content) or non-customer-submitted (e.g., account ID, board ID, user ID).
Not answered
Where does the app store logs data?
Not answered
Where does the app store the app data?
Not answered
Does the developer ensure application logs do not contain secrets or personally-identifiable information (PII)?
Yes
We ensure logs do not contain secrets or personally identifiable information (PII) by: a) Log Sanitization: Before logs are written, we sanitize the data to remove any sensitive information by filtering out known sensitive fields and replacing them with placeholder values. b) Use of Logging Libraries: We use logging libraries and frameworks designed to automatically mask or remove sensitive information from logs. c) Regular Audits: Logs are regularly audited to ensure that no sensitive data has inadvertently been logged. Automated tools help in scanning through large volumes of logs to identify any potential leaks. d) Employee Training: Employees are trained to recognize sensitive data and to avoid logging such information inadvertently. They are also trained on how to use the logging libraries and frameworks correctly to ensure sensitive data is automatically removed or masked.
Is customer data segregated from the data of other customers (for example logically or physically)?
Yes
Although customer data shares the same database schema, we ensure data isolation through stringent logical segregation. Each customer is assigned a unique identifier used in all database requests, ensuring access only to their own data. Robust access controls, authentication mechanisms, and regular security audits are in place to maintain the integrity and effectiveness of our data segregation measures.
Privacy
Does the developer enforce multi-factor authentication on employees access to systems which may process customer data?
Yes
Our employees use Multi-Factor Authentication (MFA) for accessing systems that process or hold customer data, which is hosted on AWS. AWS MFA involves the use of two different factors for authentication: something you know (your AWS account password) and something you have (an authentication device). This ensures that even if one's password is compromised, an attacker would still need access to the authentication device to gain access to the AWS resources.
Does the developer protect access to customer data based on the principle of least privilege?
Yes
Access to customer data at our company is limited to: a) Customer Support: Limited access for resolving customer issues. b) Operations and IT: Access for maintaining and managing infrastructure. c) Management: Access to aggregated and anonymized data for strategic decisions. Access is based on the principle of least privilege.
Reviews
July 11, 2024
JH: Testing
Installation history
We have data for December 28, 2024 onwards only. Collected sometime after 00:00 UTC daily.
{
"id": 10000204,
"description": "<p>π«Άπ½ Customers First</p><p>Over 2,000+ businesses, including Amazon, Uber, Accenture, and Facebook trust us because we take customer satisfaction and security seriously.</p><p><br></p><p>π Security</p><p>Appvibe adheres to strict security practices. Read more on our <a href=\"https://appvibe.com/security-and-trust\" rel=\"noopener noreferrer\" target=\"_blank\">website</a>.</p><p><br></p><p>β‘οΈ Product Highlights</p><p> β’ Embed Figma designs easily into your boards and items.</p><p> β’ Track modifications and updates live, without having to re-embed the design.</p><p> β’ Collaborate with your team on Figma designs</p><p><br></p><p>ποΈ Demo & Documentation</p><p> β’ π Find the <a href=\"https://docs.appvibe.com/books/appvibe-documentation/page/figma-integration-for-mondaycom\" rel=\"noopener noreferrer\" target=\"_blank\">product documentation here</a></p><p><strong> β’ </strong><a href=\"http://appvibe.com/demo\" rel=\"noopener noreferrer\" target=\"_blank\">Request a demo</a> to learn more</p><p><br></p><p>π οΈ Help and Support</p><p> β’ Need help? Our team of support engineers are ready to help - <a href=\"https://appvibe.com/support\" rel=\"noopener noreferrer\" target=\"_blank\">submit a support request here</a></p><p><br></p><p><strong>π Other Products Youβll Love</strong></p><p> β’ <a href=\"https://monday.com/marketplace/10000274\" rel=\"noopener noreferrer\" target=\"_blank\">Canva Integration</a></p><p> β’ <a href=\"https://monday.com/marketplace/10000271\" rel=\"noopener noreferrer\" target=\"_blank\">Time Tracking</a></p><p><br></p><p><strong>See the gallery for more details.</strong></p>",
"short_description": "Embed Figma projects in your monday.com board view and see live updates with this app.",
"compliance_answers": [
{
"questionId": 1,
"shortAnswer": true,
"detailedAnswer": "Although customer data shares the same database schema, we ensure data isolation through stringent logical segregation. Each customer is assigned a unique identifier used in all database requests, ensuring access only to their own data. Robust access controls, authentication mechanisms, and regular security audits are in place to maintain the integrity and effectiveness of our data segregation measures."
},
{
"questionId": 2,
"shortAnswer": true,
"detailedAnswer": "We approach application level updates and security patched with the following steps:\n\na) Monitor: Keep an eye out for any updates or security patches for your software.\n \nb) Evaluate: Decide if the updates are necessary and plan when to install them.\n \nc) Backup: Make a copy of your data and settings before updating.\n \nd) Test: Try the updates in a test environment to make sure they work properly.\n \ne) Deploy: Install the updates in the real (production) environment."
},
{
"questionId": 3,
"shortAnswer": true,
"detailedAnswer": "In case of a security breach we would do the following:\n\na) Assessment: Immediately assess the nature, scope, and potential impact of the breach.\nb) Notification: Notify monday.com within 24 hours of discovering the breach via email or phone call, providing all available details of the breach, including its nature, the data affected, potential consequences, and measures taken to address it.\nc) Updates: Provide continuous updates as more information becomes available and as additional steps are taken to address the breach.\nd) Compliance: Ensure compliance with all legal and regulatory requirements for data breach notification."
},
{
"questionId": 4,
"shortAnswer": true,
"detailedAnswer": "To protect all state-changing actions against CSRF (Cross-Site Request Forgery), we implement a combination of measures depending on relevancy for the app. Most of this is done by the frameworks we use and include the following:\n\na) Use of Anti-CSRF Tokens: We generate unique tokens for each session and include them in forms and AJAX requests. The server verifies the token before processing any state-changing request.\n\nb) Same-Site Cookies: We set the 'SameSite' attribute for cookies to 'Strict' or 'Lax' to ensure the browser only sends the cookie in a first-party context.\n\nc) Checking the Origin and Referer Headers: We validate the origin and referer headers of the HTTP request to ensure it came from a trusted domain.\n\nd) Requiring Authentication: For any state-changing action, we require the user to be authenticated and authorized.\n\ne) Implementing Security Headers: We implement HTTP security headers like Content-Security-Policy (CSP) to control the sources from which content can be loaded."
},
{
"questionId": 5,
"shortAnswer": true,
"detailedAnswer": "To prevent XSS (Cross-Site Scripting) attacks, we implement the following measures for encoding and sanitizing all user-supplied parameters where relevant:\n\na) Input Validation: We validate all user input to ensure it conforms to expected formats and does not contain any malicious code or characters.\n\nb) Output Encoding: We encode all user-supplied data before rendering it in the HTML output. This ensures that any potentially malicious code inserted by the user is treated as plain text and not executable script.\n\nc) Use of Content-Security-Policy (CSP) Header: We implement CSP headers to restrict the sources from which content can be loaded and executed by the browser.\n\nd) Use of Sanitization Libraries: We use established libraries and frameworks that have built-in sanitization features to automatically sanitize user input and protect against XSS attacks."
},
{
"questionId": 6,
"shortAnswer": true,
"detailedAnswer": "Access to customer data at our company is limited to:\n\na) Customer Support: Limited access for resolving customer issues.\nb) Operations and IT: Access for maintaining and managing infrastructure.\nc) Management: Access to aggregated and anonymized data for strategic decisions.\n\nAccess is based on the principle of least privilege."
},
{
"questionId": 7,
"shortAnswer": true,
"detailedAnswer": "Our employees use Multi-Factor Authentication (MFA) for accessing systems that process or hold customer data, which is hosted on AWS. AWS MFA involves the use of two different factors for authentication: something you know (your AWS account password) and something you have (an authentication device). This ensures that even if one's password is compromised, an attacker would still need access to the authentication device to gain access to the AWS resources.\n"
},
{
"questionId": 8,
"detailedAnswer": "We ensure logs do not contain secrets or personally identifiable information (PII) by:\n\n\na) Log Sanitization: Before logs are written, we sanitize the data to remove any sensitive information by filtering out known sensitive fields and replacing them with placeholder values.\n\n\nb) Use of Logging Libraries: We use logging libraries and frameworks designed to automatically mask or remove sensitive information from logs.\n\n\nc) Regular Audits: Logs are regularly audited to ensure that no sensitive data has inadvertently been logged. Automated tools help in scanning through large volumes of logs to identify any potential leaks.\n\n\nd) Employee Training: Employees are trained to recognize sensitive data and to avoid logging such information inadvertently. They are also trained on how to use the logging libraries and frameworks correctly to ensure sensitive data is automatically removed or masked.",
"shortAnswer": true
},
{
"questionId": 9,
"shortAnswer": true,
"detailedAnswer": "Our monday.com app safeguards against mass parameter assignment attacks by:\n\na) Whitelisting Parameters: Only allowing modifications to predefined and whitelisted parameters.\nb) Strong Parameter Validation: Ensuring data received is of expected type, format, and range.\nc) Authentication and Authorization: Requiring users to authenticate and checking their permissions before processing user data.\nd) Object-Level Security: Ensuring users can only modify authorized objects within their monday.com workspace.\n\nThese combined measures ensure robust protection against mass parameter assignment attacks."
},
{
"questionId": 10,
"shortAnswer": true,
"detailedAnswer": "Our app only allows redirects to a select few destinations and does not permit users to determine or add a redirect destination. Additionally, we verify user input data before authorizing any operations, such as forwards or redirects, and we validate the URLs/destinations, permitting only those on the approved list."
},
{}
],
"badges_data": {
"acquisition_source": "No touch",
"pricing_data": "Free",
"app_values": [
"Centralize your work on monday.com"
]
},
"data": {
"terms_of_service_url": "https://appvibe.com/terms-of-service"
},
"keywords": "integration,figma",
"thumbnail_url": "https://dapulse-res.cloudinary.com/image/upload/v1697461691/monday-apps-marketplace/Figma%20Integration/v3/Card_Image_11.png",
"logo_url": "https://dapulse-res.cloudinary.com/image/upload/v1694097515/monday-apps-marketplace/Google%20Slides%20Integration/figma.png",
"feedback_url": "https://appvibe.com/support",
"privacy_policy_url": "https://appvibe.com/privacy-policy",
"external_pricing_url": null,
"featured": null,
"security": null,
"display_in_template_store": null,
"acquisition_source": "No touch",
"terms_of_service_url": "https://appvibe.com/terms-of-service",
"label": null,
"app_values": [
"Centralize your work on monday.com"
],
"security_info": null,
"gallery_assets": [
{
"url": "https://dapulse-res.cloudinary.com/image/upload/v1702467344/monday-apps-marketplace/Figma%20Integration/Dec23/Figma_Listing_Image_1_White.png"
},
{
"url": "https://dapulse-res.cloudinary.com/image/upload/v1702467344/monday-apps-marketplace/Figma%20Integration/Dec23/Figma_Listing_Image_2_White.png"
},
{
"url": "https://dapulse-res.cloudinary.com/image/upload/v1702467345/monday-apps-marketplace/Figma%20Integration/Dec23/Figma_Listing_Image_3_White.png"
},
{
"url": "https://dapulse-res.cloudinary.com/image/upload/v1702467345/monday-apps-marketplace/Figma%20Integration/Dec23/Listing_Image_4.png"
},
{
"type": "video",
"url": "https://dapulse-res.cloudinary.com/video/upload/v1703770133/monday-apps-marketplace/Figma%20Integration/Dec23/Video_-_Figma_6.mp4"
}
],
"pricing_data": "Free",
"marketplace_developer_id": 10000102,
"app_id": 10062426,
"marketplace_category_ids": [
10000005,
13
],
"name": "Figma Integration",
"app_scope_str": "",
"app_client_id": "3b93c49b2843e3c6c233be8fbcb7e9c3",
"app_color": {
"hsl": {
"h": 152.54237288135593,
"s": 0,
"l": 0,
"a": 1
},
"hex": "#000000",
"rgb": {
"r": 0,
"g": 0,
"b": 0,
"a": 1
},
"hsv": {
"h": 152.54237288135593,
"s": 0,
"v": 0,
"a": 1
},
"oldHue": 152.54237288135593,
"source": "rgb"
},
"created_at": "2023-05-04T10:59:41.222Z",
"updated_at": "2024-10-13T08:07:34.538Z",
"how_to_use_url": "https://docs.bitband.com/figma-integration-for-monday.com",
"automation_app_id": null,
"plans": [
{
"id": "10062426-1-appvibe_figma_10",
"appId": 10062426,
"appPlanId": "appvibe_figma_10",
"versionId": 1,
"versionState": "live",
"name": "First 10 Seats Free",
"description": "Full use of this app for up to 10 team members.",
"extraData": {
"bullets": [],
"monthlyFee": 0,
"yearlyFee": 0,
"maxSeats": 10
},
"isTrial": false,
"isRecommended": false,
"isFree": true,
"currency": "USD",
"prices": {
"type": "seat_based",
"monthly": 0,
"yearly": 0,
"maxSeats": 10
}
},
{
"id": "10062426-1-appvibe_figma_15",
"appId": 10062426,
"appPlanId": "appvibe_figma_15",
"versionId": 1,
"versionState": "live",
"name": "Up to 15 Seats",
"description": "Full use of this app for up to 15 team members.",
"extraData": {
"bullets": [],
"monthlyFee": 5,
"yearlyFee": 4,
"maxSeats": 15
},
"isTrial": false,
"isRecommended": false,
"isFree": false,
"currency": "USD",
"prices": {
"type": "seat_based",
"monthly": 5,
"yearly": 4,
"maxSeats": 15
}
},
{
"id": "10062426-1-appvibe_figma_20",
"appId": 10062426,
"appPlanId": "appvibe_figma_20",
"versionId": 1,
"versionState": "live",
"name": "Up to 20 Seats",
"description": "Full use of this app for up to 20 team members.",
"extraData": {
"bullets": [],
"monthlyFee": 10,
"yearlyFee": 8,
"maxSeats": 20
},
"isTrial": false,
"isRecommended": false,
"isFree": false,
"currency": "USD",
"prices": {
"type": "seat_based",
"monthly": 10,
"yearly": 8,
"maxSeats": 20
}
},
{
"id": "10062426-1-appvibe_figma_25",
"appId": 10062426,
"appPlanId": "appvibe_figma_25",
"versionId": 1,
"versionState": "live",
"name": "Up to 25 Seats",
"description": "Full use of this app for up to 25 team members.",
"extraData": {
"bullets": [],
"monthlyFee": 15,
"yearlyFee": 12,
"maxSeats": 25
},
"isTrial": false,
"isRecommended": false,
"isFree": false,
"currency": "USD",
"prices": {
"type": "seat_based",
"monthly": 15,
"yearly": 12,
"maxSeats": 25
}
},
{
"id": "10062426-1-appvibe_figma_50",
"appId": 10062426,
"appPlanId": "appvibe_figma_50",
"versionId": 1,
"versionState": "live",
"name": "Up to 50 Seats",
"description": "Full use of this app for up to 50 team members.",
"extraData": {
"bullets": [],
"monthlyFee": 20,
"yearlyFee": 17,
"maxSeats": 50
},
"isTrial": false,
"isRecommended": false,
"isFree": false,
"currency": "USD",
"prices": {
"type": "seat_based",
"monthly": 20,
"yearly": 17,
"maxSeats": 50
}
},
{
"id": "10062426-1-appvibe_figma_800",
"appId": 10062426,
"appPlanId": "appvibe_figma_800",
"versionId": 1,
"versionState": "live",
"name": "Up to 800 Seats",
"description": "Full use of this app for up to 800 team members.",
"extraData": {
"bullets": [],
"monthlyFee": 200,
"yearlyFee": 167,
"maxSeats": 800
},
"isTrial": false,
"isRecommended": false,
"isFree": false,
"currency": "USD",
"prices": {
"type": "seat_based",
"monthly": 200,
"yearly": 167,
"maxSeats": 800
}
},
{
"id": "10062426-1-appvibe_figma_100",
"appId": 10062426,
"appPlanId": "appvibe_figma_100",
"versionId": 1,
"versionState": "live",
"name": "Up to 100 Seats",
"description": "Full use of this app for up to 100 team members.",
"extraData": {
"bullets": [],
"monthlyFee": 30,
"yearlyFee": 25,
"maxSeats": 100
},
"isTrial": false,
"isRecommended": false,
"isFree": false,
"currency": "USD",
"prices": {
"type": "seat_based",
"monthly": 30,
"yearly": 25,
"maxSeats": 100
}
},
{
"id": "10062426-1-appvibe_figma_200",
"appId": 10062426,
"appPlanId": "appvibe_figma_200",
"versionId": 1,
"versionState": "live",
"name": "Up to 200 Seats",
"description": "Full use of this app for up to 200 team members.",
"extraData": {
"bullets": [],
"monthlyFee": 50,
"yearlyFee": 42,
"maxSeats": 200
},
"isTrial": false,
"isRecommended": false,
"isFree": false,
"currency": "USD",
"prices": {
"type": "seat_based",
"monthly": 50,
"yearly": 42,
"maxSeats": 200
}
},
{
"id": "10062426-1-appvibe_figma_400",
"appId": 10062426,
"appPlanId": "appvibe_figma_400",
"versionId": 1,
"versionState": "live",
"name": "Up to 400 Seats",
"description": "Full use of this app for up to 400 team members.",
"extraData": {
"bullets": [],
"monthlyFee": 100,
"yearlyFee": 83,
"maxSeats": 400
},
"isTrial": false,
"isRecommended": false,
"isFree": false,
"currency": "USD",
"prices": {
"type": "seat_based",
"monthly": 100,
"yearly": 83,
"maxSeats": 400
}
},
{
"id": "10062426-1-appvibe_figma_unlimited",
"appId": 10062426,
"appPlanId": "appvibe_figma_unlimited",
"versionId": 1,
"versionState": "live",
"name": "Unlimited Seats",
"description": "Full use of this app for unlimited team members.",
"extraData": {
"bullets": [],
"monthlyFee": 695,
"yearlyFee": 579,
"maxSeats": 1000000
},
"isTrial": true,
"isRecommended": false,
"isFree": false,
"currency": "USD",
"prices": {
"type": "seat_based",
"monthly": 695,
"yearly": 579,
"maxSeats": 1000000
}
},
{
"id": "10062426-2-appvibe_figma_15",
"appId": 10062426,
"appPlanId": "appvibe_figma_15",
"versionId": 2,
"versionState": "live",
"name": "Up to 15 Seats",
"description": "Full use of this app for up to 15 team members.",
"extraData": {
"bullets": [],
"monthlyFee": 5,
"yearlyFee": 4,
"maxSeats": 15
},
"isTrial": false,
"isRecommended": false,
"isFree": false,
"currency": "USD",
"prices": {
"type": "seat_based",
"monthly": 5,
"yearly": 4,
"maxSeats": 15
}
},
{
"id": "10062426-2-appvibe_figma_20",
"appId": 10062426,
"appPlanId": "appvibe_figma_20",
"versionId": 2,
"versionState": "live",
"name": "Up to 20 Seats",
"description": "Full use of this app for up to 20 team members.",
"extraData": {
"bullets": [],
"monthlyFee": 10,
"yearlyFee": 8,
"maxSeats": 20
},
"isTrial": false,
"isRecommended": false,
"isFree": false,
"currency": "USD",
"prices": {
"type": "seat_based",
"monthly": 10,
"yearly": 8,
"maxSeats": 20
}
},
{
"id": "10062426-2-appvibe_figma_25",
"appId": 10062426,
"appPlanId": "appvibe_figma_25",
"versionId": 2,
"versionState": "live",
"name": "Up to 25 Seats",
"description": "Full use of this app for up to 25 team members.",
"extraData": {
"bullets": [],
"monthlyFee": 15,
"yearlyFee": 12,
"maxSeats": 25
},
"isTrial": false,
"isRecommended": false,
"isFree": false,
"currency": "USD",
"prices": {
"type": "seat_based",
"monthly": 15,
"yearly": 12,
"maxSeats": 25
}
},
{
"id": "10062426-2-appvibe_figma_50",
"appId": 10062426,
"appPlanId": "appvibe_figma_50",
"versionId": 2,
"versionState": "live",
"name": "Up to 50 Seats",
"description": "Full use of this app for up to 50 team members.",
"extraData": {
"bullets": [],
"monthlyFee": 20,
"yearlyFee": 17,
"maxSeats": 50
},
"isTrial": false,
"isRecommended": false,
"isFree": false,
"currency": "USD",
"prices": {
"type": "seat_based",
"monthly": 20,
"yearly": 17,
"maxSeats": 50
}
},
{
"id": "10062426-2-appvibe_figma_800",
"appId": 10062426,
"appPlanId": "appvibe_figma_800",
"versionId": 2,
"versionState": "live",
"name": "Up to 800 Seats",
"description": "Full use of this app for up to 800 team members.",
"extraData": {
"bullets": [],
"monthlyFee": 200,
"yearlyFee": 167,
"maxSeats": 800
},
"isTrial": false,
"isRecommended": false,
"isFree": false,
"currency": "USD",
"prices": {
"type": "seat_based",
"monthly": 200,
"yearly": 167,
"maxSeats": 800
}
},
{
"id": "10062426-2-appvibe_figma_100",
"appId": 10062426,
"appPlanId": "appvibe_figma_100",
"versionId": 2,
"versionState": "live",
"name": "Up to 100 Seats",
"description": "Full use of this app for up to 100 team members.",
"extraData": {
"bullets": [],
"monthlyFee": 30,
"yearlyFee": 25,
"maxSeats": 100
},
"isTrial": false,
"isRecommended": false,
"isFree": false,
"currency": "USD",
"prices": {
"type": "seat_based",
"monthly": 30,
"yearly": 25,
"maxSeats": 100
}
},
{
"id": "10062426-2-appvibe_figma_200",
"appId": 10062426,
"appPlanId": "appvibe_figma_200",
"versionId": 2,
"versionState": "live",
"name": "Up to 200 Seats",
"description": "Full use of this app for up to 200 team members.",
"extraData": {
"bullets": [],
"monthlyFee": 50,
"yearlyFee": 42,
"maxSeats": 200
},
"isTrial": false,
"isRecommended": false,
"isFree": false,
"currency": "USD",
"prices": {
"type": "seat_based",
"monthly": 50,
"yearly": 42,
"maxSeats": 200
}
},
{
"id": "10062426-2-appvibe_figma_400",
"appId": 10062426,
"appPlanId": "appvibe_figma_400",
"versionId": 2,
"versionState": "live",
"name": "Up to 400 Seats",
"description": "Full use of this app for up to 400 team members.",
"extraData": {
"bullets": [],
"monthlyFee": 100,
"yearlyFee": 83,
"maxSeats": 400
},
"isTrial": false,
"isRecommended": false,
"isFree": false,
"currency": "USD",
"prices": {
"type": "seat_based",
"monthly": 100,
"yearly": 83,
"maxSeats": 400
}
},
{
"id": "10062426-2-appvibe_figma_unlimited",
"appId": 10062426,
"appPlanId": "appvibe_figma_unlimited",
"versionId": 2,
"versionState": "live",
"name": "Unlimited Seats",
"description": "Full use of this app for unlimited team members.",
"extraData": {
"bullets": [],
"monthlyFee": 695,
"yearlyFee": 579,
"maxSeats": 1000000
},
"isTrial": true,
"isRecommended": false,
"isFree": false,
"currency": "USD",
"prices": {
"type": "seat_based",
"monthly": 695,
"yearly": 579,
"maxSeats": 1000000
}
},
{
"id": "10062426-2-appvibe_figma_10",
"appId": 10062426,
"appPlanId": "appvibe_figma_10",
"versionId": 2,
"versionState": "live",
"name": "First 10 Seats",
"description": "Full use of this app for up to 10 team members.",
"extraData": {
"bullets": [],
"monthlyFee": 2,
"yearlyFee": 1,
"maxSeats": 10
},
"isTrial": false,
"isRecommended": false,
"isFree": false,
"currency": "USD",
"prices": {
"type": "seat_based",
"monthly": 2,
"yearly": 1,
"maxSeats": 10
}
}
],
"featured_for_categories_ids": [
10000005
],
"pinned_for_categories_ids": [],
"pricing_model": null,
"app_type": "app",
"display": null,
"is_connector": null,
"google_analytics_tag_id": null,
"app_live_version": {
"updated_at": "2024-06-03T20:49:11Z",
"id": 10253022
},
"is_solution": null,
"available_for_tiers": null,
"available_for_products": null
}
