Privacy-first proof-of-work for modern forms

Stop bot traffic without image puzzles or surveillance UX.

HumanProof combines a privacy-first challenge engine, a brandable widget layer, usage-based plans, and organization controls for teams that need form protection they can actually manage.

Create free account See how it works
Free tier
100
verifications
Setup
5 min
to first widget
Data
EU
ready hosting

Live widget preview

Proof-of-work challenge, no image puzzle.

Protected
Verify you are human Calculating proof Verified Bot traffic blocked
HumanProof Ready Solving Passed Blocked
Branded default widget on Free
Default and compact variants from Starter
Risk signals and protection presets from Growth

Used in early implementations and demos by

Blank Studio
Banking.Vision
HumanProof Forms
Blank Apps
Checkout Demo
Agency Portal
Blank Studio
Banking.Vision
HumanProof Forms
Blank Apps
Checkout Demo
Agency Portal

Protection without the black box

The widget is only the visible layer.

Underneath the script tag, HumanProof handles project keys, domains, challenge engine sync, billing limits, and dashboard visibility without exposing your internal challenge backend.

H

HumanProof challenges

Use proof-of-work challenges instead of visual tasks, while keeping the internal challenge backend away from public access.

B

Brandable widget layer

Use the default visible widget, compact background protection, or invisible solving depending on the form.

S

Scoped project keys

Issue public sitekeys and backend secrets per project, with rotation and allowed-domain controls.

P

Protected attempt limits

Plan quotas are counted when challenges are solved or blocked, not only when a backend action succeeds.

O

Observe-only risk signals

Track passive, form-triggered, and explicit challenge starts before deciding whether to enforce stricter rules.

P

Platform support recovery

Keep project status, billing state, failed webhooks, engine sync, and audit history recoverable without exposing global admin tools to customers.

Implementation workflow

From empty account to protected form.

The dashboard guides setup without hiding the operational details: project state, allowed domains, security presets, keys, usage, and server verification all stay visible.

01
Provision project keys
02
Restrict allowed domains
03
Copy widget and CSS
04
Verify tokens server-side

Project setup

Checkout protection

Synced
Project created
Done
Domain locked
example.com
Widget customized
Ready
Server verify
Pending

Security preset

Balanced

Monthly usage

418 / 1,000

Widget snippet

<human-proof data-api-endpoint="/api/captcha/site_..."></human-proof>

Control plane

Your CAPTCHA should have a control plane.

HumanProof is not just a script tag. Teams get the organization controls they need after launch: billing state, project health, engine sync, risk telemetry, audit history, and support-ready diagnostics.

Project operations

Rename projects, update status, rotate secrets, resync the engine, and keep domains aligned.

Billing-aware limits

Plan limits are enforced across challenge, redeem, and verify paths with scheduled plan changes visible in the app.

Organization controls

Manage members, projects, domains, usage exports, audit events, and billing state from one customer-scoped dashboard.

Developer handoff

Copy sitekeys, widget snippets, backend verify examples, variants, triggers, and preview CSS variables from the project view.

Comparison

A quieter alternative to puzzle-first CAPTCHA.

The goal is simple: keep bot pressure visible and controlled without making legitimate users classify images or giving teams another black-box risk score.

Capability
Friendly Captcha
CaptchaFox
hCaptcha
HumanProof
User experience
Proof-of-work focused, no image labeling tasks.
Adaptive bot protection with invisible challenge options on higher plans.
Free can involve challenge tasks; passive mode and themes are paid.
Proof-of-work with default, compact, and invisible variants.
Brand control
Provider widget experience with plan-based configuration.
Customizable design with managed provider branding model.
Custom themes are available on paid plans.
Free is branded; Starter and above can run unbranded.
Privacy posture
Privacy-friendly CAPTCHA with EU-focused positioning.
GDPR-compliant positioning with EU hosting.
Privacy-focused compared with ad-tech CAPTCHA, still a third-party service.
Proof-of-work challenges plus optional first-party observe-only signals.
Operations
External provider dashboard and plan-based analytics.
Dashboard history and quota vary by plan.
Provider dashboard plus analytics on paid plans.
Projects, domains, usage, billing, risk, and audit logs in one app.

FAQ

Questions teams ask before switching CAPTCHA.

Short answers for product, engineering, and operations teams evaluating HumanProof.

Open full FAQ

Does Free include all widget variants?

No. Free is meant for evaluation and low-volume forms: branded default widget only, 100 protected attempts per month.

When can I remove HumanProof branding?

Starter and higher plans include unbranded widgets. Growth and Business also unlock the invisible variant.

What counts as a protected attempt?

A solved or blocked challenge counts toward plan usage. Backend siteverify calls do not double-count the same browser solve.

Can risk scoring block suspicious traffic?

Growth and Business include risk signals and protection presets. Projects can run in observe mode first, then enforce risk blocking when ready.

Plans

Start small, keep the same integration.

Use the free tier for demos and internal forms, then scale usage limits as traffic grows.

Free

Free

100 protected attempts / month

For trying the platform with the branded default widget.

  • 1 project
  • Default visible variant only
  • HumanProof branded widget
  • 100 protected attempts / month
  • No usage metrics
  • Community support
Start free

Starter

€9 / month

Billed yearly at €108 / year.

1,000 protected attempts / month

For small production sites that need unbranded widgets and flexible variants.

  • 2 projects
  • 1,000 protected attempts / month
  • 1 organization member
  • Basic usage metrics, 7-day history
  • Unbranded widget
  • Default and compact variants
Start Starter

Growth

€29 / month

Billed yearly at €348 / year.

10,000 protected attempts / month

For growing products that need more volume and adaptive protection controls.

  • 5 projects
  • 10,000 protected attempts / month
  • 5 organization members
  • Basic usage metrics, 14-day history
  • All widget variants
  • Risk signals
  • Protection presets
Start Growth

Business

€69 / month

Billed yearly at €828 / month.

100,000 protected attempts / month

For larger teams that need higher limits, longer history, and reporting workflows.

  • 10 projects
  • 100,000 protected attempts / month
  • 10 organization members
  • Extended usage metrics, 30-day history
  • Export-ready reporting foundation
  • All widget variants
  • Risk signals
  • Protection presets
Start Business

Enterprise

Contact sales

Custom protected attempt volume

For high-volume teams, custom requirements, and individual commercial agreements.

  • Custom protected attempt volume
  • Custom project volume
  • Custom organization members
  • Extended metrics and exports
  • All widget variants
  • Risk signals
  • Protection presets
  • Dedicated onboarding
  • Custom commercial support options
Contact sales

Protect your next form without adding friction.

Create a project, copy the snippet, and keep abuse controls visible from one dashboard.

Create free account