Pricing | Datadog
icons/icon-chat-widget
Chat

Pricing

Flexible, transparent pricing designed to scale with your business

Multi-Year/Volume discounts available

LLM Observability

Monitor, Improve, and Secure Your LLM Applications

Get in touch

Custom Quote


  • Troubleshoot your LLM applications with end-to-end tracing

  • Improve performance and reduce cost when running LLM applications

  • Evaluate LLM applications for quality

  • Assess LLM applications for privacy and security

request a quote

Multi-Year/Volume discounts available

Contact Us

Features

  • Pinpoint root causes of errors in the LLM chain

  • Analyze inputs and outputs at each step of the LLM chain

  • Assess accuracy and identify errors in embedding and retrieval steps

  • Monitor key operational metrics for LLM applications, including cost and latency trends

  • Uncover opportunities for performance and cost optimization

  • Maintain optimal performance of LLM applications with real-time alerts

  • Detect quality issues with out-of-the-box quality evaluations

  • Tune-up LLMs by uncovering drifts in production

  • Prevent leaks of sensitive data with built-in security and privacy scanners

  • Safeguard your LLM applications from response manipulation attacks

Common Questions


Can I use the product before I commit to it?
Yes, LLM Observability is already available in your account and it is free to start using. We will reach out to you about pricing once your instrumented LLM apps start submitting meaningful number of LLM requests.
How can I get started?
You need to instrument your LLM application with an SDK for Python or submit spans via an API if your application is written in a different language. If you are using orchestration frameworks like LangChain and popular LLM providers like ChatGPT, the SDK will automatically capture traces. You can view the full list of auto-instrumentation here.
Why is pricing custom?
LLM Observability is a new product so we want to make sure the billing plans meet your needs which is why we are offering custom pricing only at this time. For a detailed explanation of billing, please reach out to your Customer Success Manager.
Do I need to purchase other Datadog products to use LLM Observability?
No, you can use LLM Observability without purchasing any other Datadog products. If you are already an APM customer or plan on using APM, however, LLM Observability integrates with APM such that you have better end-to-end visibility of your entire application. Generally, having all your monitoring and security alerts and insights in one place is something we encourage for comprehensive visibility.

Event Management

Transform alert fatigue into actionable insights and accelerate remediation with automated event correlation

Starting At

$ 0.10
Per event evaluated by a correlation pattern
(Datadog generated events are free)

  • Aggregate, and intelligently correlate alerts from Datadog and third-party tools to reduce alert fatigue, and reduce time discovery and resolution

*Billed annually or $0.14 on-demand

Features

  • Reduce alert fatigue and ticket volume with correlation and deduplication

  • Aggregate alerts and change events from anywhere into a case or 3rd party ITSM tool

  • Jump-start your triaging in the same view with more observability context from related metrics and logs data

Common Questions


How is “evaluated by a correlation pattern” defined?
Once a correlation pattern is created, events will start matching based on the criteria defined. Note: it is not based on ingestion.
What are Datadog generated events?
Examples of events generated from Datadog include those from, Monitor Alerts, Error Tracking, Incidents, etc. Only 3rd party events ingested from either custom solutions or other tools will be charged for.
Do I need to purchase other Datadog products to use Event Management?
No, you can use Event Management without purchasing any other Datadog products. You have the option to ingest events from 3rd parties either via integration, email and API. Having all your monitoring and security alerts and insights in one place is something we encourage for comprehensive visibility.
I am an existing customer. Can I add Event Management to my plan?
Yes, you can add Event Management to your existing plan. Reach out to your Customer Success Manager for further details

Cloud Security Management

Unified view of infrastructure threats and findings

Pro


Starting At

$ 10
Per host,
per month*

Continuous scanning for misconfigurations across your cloud resources

  • Built-in mapping of your resources to compliance frameworks to help with audits

  • Continuous scanning for misconfigurations (CSPM, KSPM)

  • A resource inventory to visually map out where their cloud resources and highest risks are

  • Vulnerability management for container images

  • Workflows to automate remediation

*Billed annually or $12 on-demand

Enterprise


Starting At

$ 25
Per host,
per month*

Includes everything in CSM Pro, as well as:

  • Vulnerability management for hosts

  • Infrastructure entitlement management (CIEM)

  • Cloud Workload Security (CWS) for Linux, Windows Kubernetes, Docker, and AWS Fargate ECS/EKS

  • Case management

  • Increased container allotment (20 containers allotted per host license**)

*Billed annually or $30 on-demand
**Additional containers billed at $0.002 / hr per container


Multi-Year/Volume discounts available (500+ hosts/mo)

Contact Us

Cloud Workload Security (stand-alone)


Starting At

$ 15
Per host,
per month*

Real-time threat detection across Linux, Windows Kubernetes, Docker, and AWS Fargate ECS/EKS

  • Deep file & process activity monitoring

  • Performant, in-kernel, eBPF-powered analysis

  • Network anomaly detection

  • 4 containers allotted per host license**

*Billed annually or $18 on-demand
**Additional containers billed at $0.002 / hr per container

Features


Pro

Enterprise

CWS

Features


Continuous configuration monitoring across cloud resources (CSPM)

Icon/check Created with Sketch.

Icon/check Created with Sketch.

Resource inventory

Icon/check Created with Sketch.

Icon/check Created with Sketch.

Icon/check Created with Sketch.

Vulnerability management

Container Images

Hosts and Container Images

Kubernetes Security Posture Management (KSPM)

Icon/check Created with Sketch.

Icon/check Created with Sketch.

Case management

Icon/check Created with Sketch.

Icon/check Created with Sketch.

Workflows allotment

5 workflow executions per host per month

20 workflow executions per host per month

Container allotment

20 per host

4 per host

File integrity monitoring

Icon/check Created with Sketch.

Icon/check Created with Sketch.

Real-time threat detection

Icon/check Created with Sketch.

Icon/check Created with Sketch.

Anomalous workload profile detection

Icon/check Created with Sketch.

Icon/check Created with Sketch.

Cloud infrastructure entitlement management

Icon/check Created with Sketch.

Add-ons


AWS Fargate (Serverless Containers)

$2 per task ($2.90 on demand)

When combined with other products


One interface to correlate workload level threats with misconfigurations, vulnerabilities, and identify related risks.

Icon/check Created with Sketch.

Icon/check Created with Sketch.

Icon/check Created with Sketch.

Pivot seamlessly to related metrics, traces, and logs during investigations

Icon/check Created with Sketch.

Icon/check Created with Sketch.

Icon/check Created with Sketch.

Support Plans


From basic plans to bespoke offerings, Datadog offers the right level of support for any organization.

LEARN MORE ABOUT OUR SUPPORT PLANS

Common Questions

Who is this for?
CSM Pro is built to support multiple teams in discovering their existing cloud infrastructure, identifying issues that require attention, and evaluating their compliance readiness with cloud security posture management, all while providing guidance on how to address those gaps effectively.
Can I purchase CSM Pro for some hosts, and CSM Enterprise for the rest of my hosts?
No, you may either purchase CSM Pro or CSM Enterprise for your organization, but not both.
What kind of billing plan do I need to run CSM Pro or Enterprise?
Every billable CSM Pro or CSM Enterprise host requires the purchase of Pro or Enterprise Infrastructure Monitoring.
What counts as a billable host?
A host is any physical or virtual OS instance that you monitor with Datadog. It could be a server, VM, node (in the case of Kubernetes) or App Service Plan instance (in the case of Azure App Services).
What capabilities are included?
Continuous scanning for misconfigurations, vulnerability management for container images, a full inventory of your cloud resources, case management, and 5 workflow executions per host per license.
What does setup involve?
Getting started requires cloud provider integrations and the Datadog agent (optional), which is the same one leveraged already for our infrastructure monitoring product.
Who is this for?
CSM Enterprise is an advanced solution tailored specifically for security-minded teams that quickly maps, identifies, and prioritizes misconfigurations, threats, vulnerabilities and identity risks across their entire cloud infrastructure.
Can I purchase CSM Pro for some hosts, and CSM Enterprise for the rest of my hosts?
No, you may either purchase CSM Pro or CSM Enterprise for your organization, but not both.
What kind of billing plan do I need to run CSM Pro or Enterprise?
Every billable CSM Pro or CSM Enterprise host requires the purchase of Pro or Enterprise Infrastructure Monitoring.
What capabilities are included?
Continuous scanning for misconfigurations, vulnerability management for container images and hosts, real-time threat detection, cloud infrastructure entitlement management, anomalous workload profile detection, a full inventory of your cloud resources, case management, 20 workflow executions per host, and 20 containers included per host license.
Is Infrastructure Monitoring Pro or Enterprise required on every CSM Enterprise Host
Yes, for example, if you subscribe for 10 CSM Enterprise Hosts, those hosts must also be subscribed for 10 Infrastructure Pro or Enterprise hosts. This applies to both committed and non-committed host usage.
What does setup involve?
Getting started requires installation of the lightweight Datadog agent, which is the same one leveraged already for our infrastructure monitoring product.
Why are CWS and CSM Pro listed on my bill?
If you are using CSM Enterprise on demand, your bill will temporarily show the line items CSM Pro and Cloud Workload Security. Those will be transitioned out by the end of year and replaced by a line item for CSM Enterprise only.
What counts as a billable host?
A host is any physical or virtual OS instance that you monitor with Datadog. It could be a server, VM, node (in the case of Kubernetes) or App Service Plan instance (in the case of Azure App Services).
What kind of billing plan do I need to run Cloud Workload Security (CWS) ?
CWS can be purchased in addition to Infrastructure Monitoring, and is already included if CSM Enterprise is purchased.
What counts as a billable host?
A host is any physical or virtual OS instance that you monitor with Datadog. It could be a server, VM, node (in the case of Kubernetes) or App Service Plan instance (in the case of Azure App Services).
How do I monitor containers and Kubernetes workloads?
In containerized environments, the Datadog agent runs in a container alongside any number of other containers on a host. From there it monitors system activity for all running containers and for the host itself. Depending on your plan, you can monitor 4 containers free for each host license. Additional containers will be billed at $0.002 per container per hour. In addition, you can purchase prepaid containers at $1 per container per month.
What environments does CWS support?
We support most major Linux distributions, Windows Servers, and container runtimes including Docker and Kubernetes to provide unparalleled visibility into your workloads.

CI Pipeline Visibility

Monitor the health and performance of your CI pipelines

Starting At

$ 8
Per committer,
per month*

  • View data from multiple CI providers in a single place

  • Visualize performance across pipelines, stages, and jobs

  • Surface recurring errors and the commits that caused them

*Billed annually or $12 on-demand

Features

  • Diagnose the health & performance of your pipelines

  • Make data-driven decisions to optimize your CI/CD

  • Pipeline Visibility is currently compatible with GitLab, GitHub Actions, Jenkins, CircleCI, Buildkite, Codefresh, TeamCity, Azure DevOps, and AWS CodePipeline. Other providers and custom pipelines can be integrated via API. Out-of-the-box support for more CI providers is coming soon.

  • Powerful out-of-the-box dashboards & integrations

  • Alert relevant teams about pipeline health and performance

When Combined with Other Plans


  • Auto-instrument pipelines and tests to seamlessly pivot to related logs and errors

Service and Support


Common Questions


How do you define a committer?
A committer means an active Git committer; they are identified through their Git author email address. A committer is counted towards billing if they commit at least 3 times in a given month.
How do you define a committer in a pipeline not linked in a Git repository?
In the event that a pipeline is not associated to a git repository, or git metadata is unavailable, the username of the person triggering the pipeline execution will be used as the billable committer.
Can I purchase more than one software delivery plan for my team?
Yes, customers can purchase a combination of software delivery plans. For example, for a team of 10, you can have 5 committers billed for Pipeline Visibility, 3 committers billed for Test Visibility, and 2 committers billed for Test Visbility and Intelligent Test Runner.
How do you define a span?
Every pipeline, pipeline stage and pipeline job is considered a span in Pipeline Visibility.
How many spans are allotted?
400,000 spans per committer per month or 547.95 spans per committer per hour (both summed across all Pipeline Visibility committers). Additional pipeline spans can be purchased at $3 per million spans per month.
What is the span retention period?
Pipeline spans are retained for 15 months.
Can I modify the span retention period?
No, the span retention period cannot be modified.
What CI providers does CI Visibility support?
Pipeline Visibility is currently compatible with GitLab, GitHub Actions, Jenkins, CircleCI, Buildkite, Codefresh, TeamCity, Azure DevOps, and AWS CodePipeline. Support for more CI providers is coming soon.

Infrastructure

See inside any stack, any app, at any scale, anywhere

Free


Starting At

$ 0

Core collection and visualization features



Features


  • Standard Events and Metrics
  • Out-of-the-Box Dashboards
  • 800+ Integrations
  • Host and Container Maps
  • Enterprise-Grade Security
  • Unlimited User Accounts
  • 1-to-1 Collaboration on CoScreen
  • Full-Resolution Data Retention
  • 1-day metric retention

  • Up to 5 hosts

Pro


Starting At

$ 15
Per host,
per month*

Centralize your monitoring of systems, services, and serverless functions



Features


  • Standard Events and Metrics
  • Out-of-the-Box Dashboards
  • 800+ Integrations
  • Host and Container Maps
  • Enterprise-Grade Security
  • Unlimited User Accounts
  • 1-to-1 Collaboration on CoScreen
  • Full-Resolution Data Retention
  • Alerts
  • Container Monitoring
  • Custom Metrics
  • Custom Events
  • Single Sign-On with SAML
  • Outlier Detection

Add-ons


  • AWS Fargate (serverless containers)
  • IoT Device Monitoring
  • 800+ integrations

  • Out-of-the-box dashboards

  • 15-month metric retention

*Billed annually or $18 on-demand

Enterprise


Starting At

$ 23
Per host,
per month*

Advanced features and administrative controls



Features


  • Standard Events and Metrics
  • Out-of-the-Box Dashboards
  • 800+ Integrations
  • Host and Container Maps
  • Enterprise-Grade Security
  • Unlimited User Accounts
  • 1-to-1 Collaboration on CoScreen
  • Full-Resolution Data Retention
  • Alerts
  • Container Monitoring
  • Custom Metrics
  • Custom Events
  • Single Sign-On with SAML
  • Outlier Detection
  • Watchdog: Automated insights
  • Correlations
  • Anomaly Detection
  • Forecast Monitoring
  • Live Processes

Add-ons


  • AWS Fargate (serverless containers)
  • IoT Device Monitoring
  • Machine learning-based alerts

  • Live Processes

*Billed annually or $27 on-demand


Starting At




Features


  • Standard Events and Metrics
  • Out-of-the-Box Dashboards
  • 800+ Integrations
  • Host and Container Maps
  • Enterprise-Grade Security
  • Unlimited User Accounts
  • 1-to-1 Collaboration on CoScreen
  • Full-Resolution Data Retention
  • Alerts
  • Container Monitoring
  • Custom Metrics
  • Custom Events
  • Single Sign-On with SAML
  • Outlier Detection
  • Watchdog: Automated insights
  • Correlations
  • Anomaly Detection
  • Forecast Monitoring
  • Live Processes

Add-ons


  • AWS Fargate (serverless containers)
  • IoT Device Monitoring

    DevSecOps Pro


    Starting At

    $ 22
    Per host,
    per month*

    Secure your cloud resources and adhere to industry standards



    Features


    Includes all features in Infrastructure Pro, plus:

    • Infrastructure Monitoring
    • Continuous scanning for misconfigurations (CSPM, KSPM)
    • 15+ OOTB compliance frameworks
    • Resource inventory
    • Vulnerability management
    • File integrity monitoring
    • Cloud Workload Security (CWS)
    • Anomalous workload profile detection
    • Cloud infrastructure entitlement management (CIEM)
    • Case management
    • Workflows

    Includes all features in Infrastructure Pro, plus:

    • Continuous scanning for misconfigurations (CSPM, KSPM)

    • 15 out of the box compliance frameworks

    • Vulnerability management for container images

    • Workflows to automate remediation steps

    *Billed annually or $27 on-demand

    DevSecOps Enterprise


    Starting At

    $ 34
    Per host,
    per month*

    Advanced risk and threat detection capabilities



    Features


    Includes all features in Infrastructure Enterprise and DevSecOps Pro, plus:

    • Infrastructure Monitoring
    • Continuous scanning for misconfigurations (CSPM, KSPM)
    • 15+ OOTB compliance frameworks
    • Resource inventory
    • Vulnerability management
    • File integrity monitoring
    • Cloud Workload Security (CWS)
    • Anomalous workload profile detection
    • Cloud infrastructure entitlement management (CIEM)
    • Case management
    • Workflows

    Includes all features in Infrastructure Enterprise and DevSecOps Pro, plus:

    • Infrastructure entitlement management (CIEM)

    • File integrity monitoring

    • Cloud Workload Security (CWS) for Linux, Windows Kubernetes, Docker, and AWS Fargate ECS/EKS

    • Vulnerability management for container images and hosts

    *Billed annually or $41 on-demand


    Multi-Year/Volume discounts available (500+ hosts/mo)

    Custom Metrics: As low as $1 per 100 (see common questions)

    Contact Us

    Features


    Free

    Pro

    Enterprise

    Features


    Standard Events and Metrics

    Up to 5 hosts

    Icon/check Created with Sketch.

    Icon/check Created with Sketch.

    Out-of-the-Box Dashboards

    Icon/check Created with Sketch.

    Icon/check Created with Sketch.

    Icon/check Created with Sketch.

    800+ Integrations

    Icon/check Created with Sketch.

    Icon/check Created with Sketch.

    Icon/check Created with Sketch.

    Host and Container Maps

    Icon/check Created with Sketch.

    Icon/check Created with Sketch.

    Icon/check Created with Sketch.

    Enterprise-Grade Security

    Icon/check Created with Sketch.

    Icon/check Created with Sketch.

    Icon/check Created with Sketch.

    Unlimited User Accounts

    Icon/check Created with Sketch.

    Icon/check Created with Sketch.

    Icon/check Created with Sketch.

    1-to-1 Collaboration on CoScreen

    Icon/check Created with Sketch.

    Icon/check Created with Sketch.

    Icon/check Created with Sketch.

    Full-Resolution Data Retention

    1 day

    15 months

    15 months Customizable

    Alerts

    Unlimited

    Unlimited

    5 per host allotted

    10 per host allotted

    100 per host allotted

    200 per host allotted

    500 per host allotted

    1000 per host allotted

    Single Sign-On with SAML

    Icon/check Created with Sketch.

    Icon/check Created with Sketch.

    Outlier Detection

    Icon/check Created with Sketch.

    Icon/check Created with Sketch.

    Watchdog: Automated insights

    Icon/check Created with Sketch.

    Correlations

    Icon/check Created with Sketch.

    Anomaly Detection

    Icon/check Created with Sketch.

    Forecast Monitoring

    Icon/check Created with Sketch.

    Live Processes

    Icon/check Created with Sketch.

    Advanced Administrative Features


    SCIM

    Icon/check Created with Sketch.

    Icon/check Created with Sketch.

    IP Allowlist

    Icon/check Created with Sketch.

    Add-ons


    AWS Fargate (serverless containers)

    $1 per task; includes an allotment of 5 custom metrics and 5 ingested custom metrics per function

    $1 per task; includes an allotment of 5 custom metrics and 5 ingested custom metrics per function

    IoT Device Monitoring

    $5 per device; includes an allotment of 20 custom metrics and 20 ingested custom metrics per device

    $5 per device; includes an allotment of 20 custom metrics and 20 ingested custom metrics per device

    DevSecOps


    Infrastructure Monitoring

    All features in Infrastructure Pro

    All features in Infrastructure Enterprise

    Continuous scanning for misconfigurations (CSPM, KSPM)

    Icon/check Created with Sketch.

    Icon/check Created with Sketch.

    15+ OOTB compliance frameworks

    Icon/check Created with Sketch.

    Icon/check Created with Sketch.

    Resource inventory

    Icon/check Created with Sketch.

    Icon/check Created with Sketch.

    Vulnerability management

    Container images

    Host images

    File integrity monitoring

    Icon/check Created with Sketch.

    Cloud Workload Security (CWS)

    Icon/check Created with Sketch.

    Anomalous workload profile detection

    Icon/check Created with Sketch.

    Cloud infrastructure entitlement management (CIEM)

    Icon/check Created with Sketch.

    Case management

    Icon/check Created with Sketch.

    Icon/check Created with Sketch.

    Workflows

    5 allotted workflow executions per host per month

    20 allotted workflow executions per host per month

    Support Plans


    From basic plans to bespoke offerings, Datadog offers the right level of support for any organization.

    LEARN MORE ABOUT OUR SUPPORT PLANS

    Common Questions


    How do you define a host?
    A host is any physical or virtual OS instance that you monitor with Datadog. It could be a server, VM, node (in the case of Kubernetes) or App Service Plan instance (in the case of Azure App Services).
    How do I monitor containers?
    The Datadog Agent runs in a container alongside any number of other containers on a host. From there it can collect metrics from its neighboring containers and from the host itself. Depending on your plan, you can monitor 5 or 10 containers free for each host license. Additional containers will be billed at $0.002 per container per hour. In addition, you can purchase prepaid containers at $1 per container per month.
    What is a custom metric?
    Datadog was designed to allow you to monitor your own custom applications and business metrics—not just your infrastructure. You can send any and all of your organization’s important metrics to Datadog for graphing, alerting, correlation, anomaly detection and more. Example uses: monitoring ad revenue, the rate at which shopping carts are abandoned, or the health of an in-game economy. Many customers find these metrics invaluable, especially when combined with infrastructure metrics.
    How many custom metrics are allotted per host?
    Datadog offers 100 custom metrics for every host monitored with Infrastructure Pro, or 200 custom metrics for every host monitored with Infrastructure Enterprise.
    How do I get charged for additional custom metrics?
    Beyond the volume of custom metrics allotted per host, Datadog charges as low as $1 per 100 custom metrics per month. Contact us or reach out to your Sales or Customer Success rep for more details.
    How does Datadog count and meter custom metrics?
    Custom metrics are counted hourly and averaged monthly across your entire account, not on a per-host basis. For more details around Custom Metrics metering, please see our Custom Metrics Billing FAQ.
    What is a custom event?
    Datadog allows you to send custom events coming from your own custom applications such as custom-built deployment tools or scheduled maintenance jobs. This way, you can correlate any of these events with performance metrics, create monitors for alerting and enrich events at intake with processing pipelines to be queried alongside other standard events.
    How many events are allotted per host?
    Datadog offers 500 custom events for every host monitored with infrastructure monitoring for pro plan, or 1000 for enterprise plan. Custom events are averaged across your entire account, not just on a per-host basis. Beyond this limit, Datadog charges $2 for 100 000 custom events (billed annually or $3 on-demand), although it is rare for our customers to exceed the allotted volume.
    How can I send custom metrics and events?

    You can send Datadog custom metrics and events in three ways

    • The Datadog Agent ships with DogStatsD so you can submit custom metrics via the Agent's non-blocking API functions for many programming languages.
    • The Datadog Agent allows for the creation of custom integrations via plugins to the Agent. This plugin system allows the Agent to collect custom metrics on your behalf. Integrations which are contributed back to the Datadog Agent convert to standard metrics.
    • Datadog also has a full-featured API that you can send your metrics to—either directly over HTTP or with a language-specific library.
    What compliance frameworks does DevSecOps support?
    DevSecOps Pro and Enterprise allow you to track conformance to requirements of over 15 industry benchmarks including CIS, PCI DSS, SOC 2, and more.
    How can I be sure my data is secure?
    Security is our top priority. This includes, universal HTTPS, strong TLS configuration, and HTTP Strict Transport Security. Our Agent is open-source, which means it can be reviewed to ensure it meets your security requirements.
    Are there other billing options?
    Annual, monthly and hourly plans are available. We can customize billing plans to meet your needs. For a detailed explanation of billing, please see our Billing FAQ
    Do you have special offerings for partners?
    We’re always looking to partner with technology and service providers and resellers. See our Partners page for more.
    How do you define an IoT device?
    An IoT device is a nonstandard compute device deployed outside of an on-premise or cloud data center which transmits data over a network. Examples of IoT devices include the Raspberry Pi and Nvidia Jetson. You can monitor IoT devices in Datadog with the Datadog IoT Agent.
    Can I buy the DevSecOps SKU for some of my hosts and standalone Infrastructure or Cloud Security Management SKUs for the remainder?
    You cannot combine the DevSecOps SKU with standalone Infrastructure or Cloud Security Management SKUs.

    Application Performance Monitoring

    Improve the performance of your cloud-scale
    applications end to end, down to a single line of code

    APM


    Starting At

    $ 31
    Per host,
    per month*

    Resolve issues faster with end-to-end distributed traces and service health metrics

    • Automatic service discovery and dependency mapping (Universal Service Monitoring)

    • 15-minute live trace search & analytics

    • 15-day historical search & analytics

    • RED metrics based on 100% of traffic with 15-month retention

    • Correlate traces with metrics, logs, processes, network data, and more

    *Billed annually or $36 on-demand

    APM Pro


    Starting At

    $ 35
    Per host,
    per month*

    Track and improve the performance of your streaming data pipelines end to end

    Everything included in APM, plus Data Streams Monitoring:

    • Automatic dependency mapping of all queues, consumers, and producers

    • End-to-end pipeline latency and consumer lag metrics

    • Faulty queue detection

    *Billed annually or $42 on-demand

    APM Enterprise


    Starting At

    $ 40
    Per host,
    per month*

    Optimize code performance in production with minimal overhead

    Everything included in APM Pro, plus Continuous Profiler:

    • Code-level tracing including wall, lock, CPU, and I/O time

    • CPU and memory code profiles for resource and cost optimization

    • Code performance comparisons across versions

    • Actionable insights with automatic code analysis

    *Billed annually or $48 on-demand

    APM DevSecOps


    Starting At

    $ 36
    Per host,
    per month*

    Reduce security risk with OSS vulnerability detection in production

    Includes everything in APM, plus Software Composition Analysis (SCA):

    • Identify vulnerabilities in third party libraries

    • Prioritize vulnerabilities based on exposure and CVSS

    • Actionable remediation guidance with service ownership insights

    *Billed annually or $43.20 on-demand

    APM DevSecOps Pro


    Starting At

    $ 40
    Per host,
    per month*

    Reduce security risk with OSS vulnerability detection in production

    Includes everything in APM Pro, plus Software Composition Analysis (SCA):

    • Identify vulnerabilities in third party libraries

    • Prioritize vulnerabilities based on exposure and CVSS

    • Actionable remediation guidance with service ownership insights

    *Billed annually or $48 on-demand

    APM DevSecOps Enterprise


    Starting At

    $ 45
    Per host,
    per month*

    Reduce security risk with OSS vulnerability detection in production

    Includes everything in APM Enterprise, plus Software Composition Analysis (SCA):

    • Identify vulnerabilities in third party libraries

    • Prioritize vulnerabilities based on exposure and CVSS

    • Actionable remediation guidance with service ownership insights

    *Billed annually or $54 on-demand

    Features


    APM

    APM Pro

    APM Enterprise

    Features


    End-to-end distributed tracing for any app at any scale

    Icon/check Created with Sketch.

    Icon/check Created with Sketch.

    Icon/check Created with Sketch.

    Service dependency visualizations

    Icon/check Created with Sketch.

    Icon/check Created with Sketch.

    Icon/check Created with Sketch.

    Deployment Tracking - performance metrics and version comparisons for every deploy

    Icon/check Created with Sketch.

    Icon/check Created with Sketch.

    Icon/check Created with Sketch.

    Service Catalog - service ownership management alongside real-time observability data

    Icon/check Created with Sketch.

    Icon/check Created with Sketch.

    Icon/check Created with Sketch.

    Universal Service Monitoring - automatically discover, map, and catalog services and dependencies

    Icon/check Created with Sketch.

    Icon/check Created with Sketch.

    Icon/check Created with Sketch.

    Retain spans using tag-based filters and generate custom metrics from any span via the UI

    Icon/check Created with Sketch.

    Icon/check Created with Sketch.

    Icon/check Created with Sketch.

    AI-based anomaly, outlier, and root cause detection

    Icon/check Created with Sketch.

    Icon/check Created with Sketch.

    Icon/check Created with Sketch.

    Dynamic Instrumentation—Add logs, spans, and metrics without interrupting runtime

    Icon/check Created with Sketch.

    Icon/check Created with Sketch.

    Icon/check Created with Sketch.

    End-to-end visibility between queues and application services

    Icon/check Created with Sketch.

    Icon/check Created with Sketch.

    Detect bottlenecks and message-backed queues

    Icon/check Created with Sketch.

    Icon/check Created with Sketch.

    Measure consumer lag in asynchronous applications

    Icon/check Created with Sketch.

    Icon/check Created with Sketch.

    Attribute unexpected throughput to adjacent services and teams

    Icon/check Created with Sketch.

    Icon/check Created with Sketch.

    Correlate delayed messages with related traces and logs

    Icon/check Created with Sketch.

    Icon/check Created with Sketch.

    Low overhead code profiling in production

    Icon/check Created with Sketch.

    Method timings for every request (incl. time spent on locks, I/O, and more)

    Icon/check Created with Sketch.

    CPU and memory consumption for every service and code line

    Icon/check Created with Sketch.

    Code performance comparisons after deployments (e.g. CPU, memory allocations, lock wait time)

    Icon/check Created with Sketch.

    Automatic code analysis and actionable insights

    Icon/check Created with Sketch.

    Allotments

    Span Ingestion: 150 GB per APM host per month or 0.205 GB per APM host per hour, averaged across all your APM hosts

    Icon/check Created with Sketch.

    Icon/check Created with Sketch.

    Icon/check Created with Sketch.

    Span Retention: 1 million Indexed Spans per APM host per month or 1370 Indexed Spans per APM host per hour, averaged across all your APM hosts

    Icon/check Created with Sketch.

    Icon/check Created with Sketch.

    Icon/check Created with Sketch.

    Error Tracking

    Icon/check Created with Sketch.

    Icon/check Created with Sketch.

    Icon/check Created with Sketch.

    Data Streams Monitoring

    Icon/check Created with Sketch.

    Icon/check Created with Sketch.

    Profiled Hosts

    Icon/check Created with Sketch.

    4 containers per profiled host, averaged across all your profiled hosts; then $2 per container

    Icon/check Created with Sketch.

    Add-ons


    AWS Fargate

    $2 per task ($2.90 on-demand)

    $2 per task ($2.90 on-demand)

    10GB span ingestion and 65,000 span retention, averaged across all your APM hosts

    $2.60 per task ($3.70 on-demand)

    10GB span ingestion and 65,000 span retention, averaged across all your APM hosts, 1 profiled host

    When combined with other products


    Full stack visibility

    Icon/check Created with Sketch.

    Icon/check Created with Sketch.

    Icon/check Created with Sketch.

    Pivot to related infrastructure metrics, logs, processes, network data, synthetic tests, and RUM sessions

    Icon/check Created with Sketch.

    Icon/check Created with Sketch.

    Icon/check Created with Sketch.

    Cross-product dashboards and alerts

    Icon/check Created with Sketch.

    Icon/check Created with Sketch.

    Icon/check Created with Sketch.

    Service and Support


    Technical support across chat and email

    Icon/check Created with Sketch.

    Icon/check Created with Sketch.

    Icon/check Created with Sketch.

    Community Forum and Online Docs

    Icon/check Created with Sketch.

    Icon/check Created with Sketch.

    Icon/check Created with Sketch.

    Icon/check Created with Sketch.

    Icon/check Created with Sketch.

    Icon/check Created with Sketch.

    APM DevSecOps

    APM DevSecOps Pro

    APM DevSecOps Enterprise

    DevSecOps


    Vulnerability insights in Service Catalog

    Icon/check Created with Sketch.

    Icon/check Created with Sketch.

    Icon/check Created with Sketch.

    Datadog severity score

    Icon/check Created with Sketch.

    Icon/check Created with Sketch.

    Icon/check Created with Sketch.

    Actionable remediation guidance

    Icon/check Created with Sketch.

    Icon/check Created with Sketch.

    Icon/check Created with Sketch.

    Data Streams Monitoring is also available standalone starting at $15 per host
    and
    Continuous Profiler is available standalone starting at $19 per host.
    For more details, Contact Us or reach out to your Sales or Customer Success rep.

    Common Questions

    What counts as a billable APM host?
    A billable APM host is a host that is actively generating traces that are submitted to the Datadog SaaS application, including, but not limited to, an OpenTelemetry Collector. This means that hosts running services that are not instrumented (e.g. databases, caches, queues and load-balancers) and are not generating traces submitted to the Datadog platform do not count as APM hosts even if APM is enabled on them.
    What kind of billing plan do I need to run APM, APM Pro, or APM Enterprise?
    Every billable APM, APM Pro, or APM Enterprise host requires the purchase of Pro or Enterprise Infrastructure Monitoring.
    Is Pro or Enterprise Infrastructure Monitoring required on every APM Host?
    Yes. For example, if you subscribe for 10 APM hosts, those hosts must also be subscribed for 10 Pro or Enterprise Infrastructure hosts. This applies to both committed and non-committed host usage in all APM tiers.
    I am an existing APM customer. Can I switch to the APM Pro or APM Enterprise?
    Yes. Existing APM customers have the option of changing their plan to APM Pro or APM Enterprise. Contact your Sales or Customer Success rep for help.
    Can I purchase a mix of APM, APM Pro, and APM Enterprise hosts?
    No. Customers can commit to only one of the plans across all their APM hosts, not a combination thereof.
    Does a purchase of APM host include Universal Service Monitoring (USM) on that same host?
    Yes. USM is included on the same host APM is purchased on, regardless of the APM tier. This means that Datadog will always discover, map, and monitor every new and/or non-instrumented service running on your APM hosts, automatically.
    If I’m an existing USM customer and start using APM on the same host, will I be charged for both products?
    No. If both USM and APM are purchased and/or installed on the same host, you will only pay the APM price on the host, based on your APM tier.
    What languages does APM support?
    Java, Python, Ruby, Go, Node, .NET and PHP. You can find the full list of supported languages and libraries in our documentation.
    Can I add custom instrumentation on top of Datadog’s out-of-the-box instrumentation?
    Yes. We provide auto-instrumentation for popular libraries and frameworks, but you can easily add custom instrumentation if desired.
    Can I run APM with containers?
    Yes, you can run APM in a containerized environment. The number of containers running on each host (node) does not impact the APM host-based price. AWS Fargate is also supported.
    Does APM support Serverless computing?
    Yes. We support AWS Fargate tasks. Based on your APM plan, the price is $2/$2/$2.60 per task when billed annually and $2.90/$2.90/$3.70 when billed on-demand. APM also supports AWS Lambda (see pricing info here).
    What is the difference between ingestion and retention?
    Ingestion means sending your traces to Datadog and having all of them available for Live Search and Analytics for 15 minutes. Retention means storing your most important traces (e.g. error, high latency, or business-critical ones) and making them available for search and analysis during a retention period of your choice (15 days by default).
    Can I ingest additional spans?

    Yes. While we include 150GB per APM host by default for Ingested Spans, you can always ingest additional traces and spans for 15-minute live trace search and analytics at $0.10/GB.

    Note: The allotted 150GB per host is summed over all the APM hosts. For example, if in a given month you have 2 APM hosts and one ingests 250GBs and the other 50GBs (300GB in total), you will not be billed for ingestion that month.

    Can I retain (index) additional spans and modify the retention period?

    Yes. While we include 1 million Indexed Spans per APM host with 15-day retention by default, you can always retain additional spans.

    For additional Indexed Spans, we offer the following retention periods:

    • 7-day retention at $1.27 per million spans per month (billed annually or $1.91 on-demand)
    • 15-day retention at $1.70 per million spans per month (billed annually or $2.55 on-demand)
    • 30-day retention at $2.50 per million spans per month (billed annually or or $3.75 on-demand)

    If you need longer retention, please reach out to your Customer Success or Sales rep to customize your plan.

    Note 1: The allotted 1 million Indexed Spans per host is summed across all your APM hosts. For example, if in a given month you have 2 APM hosts and you index 1.5 million spans from one and 0.5 million from the other (2 million in total), you will not be billed for indexing that month.

    Note 2: Indexed Spans that are auto-retained by Datadog do not count towards the 1 million Indexed Spans that are allotted per host.

    How does on-demand billing of ingested and indexed spans differ from my committed plan?

    On-demand use of APM is counted on an hourly basis. Both ingested and indexed span allotment are metered each hour and are not aggregated across all use throughout the month.

    This means that ingested and indexed span use that goes over the associated APM Host allotment in the same hour will increase billing regardless of span use during other times.

    What are the hourly span allotments and on-demand pricing?

    For every host hour, customers get an hourly allotment corresponding to a share of the monthly allotment (150 GB for ingested spans and 1M indexed) split evenly by hour by month in the current year. For example, in January, for every host hour, customers get an allotment of 0.205 GB (150 GB / (365 * 24 / 12)) for ingested spans and 1369 indexed spans (1 M / (365 * 24 / 12)).

    For additional volume, in a given hour, customers will be charged $0.10 per additional GB of ingested spans and the indexed spans rate for every additional 1M indexed spans.

    Do I have to ingest and/or retain 100% of my traces?
    With an intuitive user interface, you can decide what to send to Datadog as well as which traces to retain and for how long. This way, customers get full control over their tracing data and their network-bandwidth-related costs.
    Does trace sampling impact the accuracy of RED metrics?
    No, the listed APM price includes RED metrics (requests, errors, duration). Regardless of any sampling rate (default or custom), RED metrics are always calculated based on 100% of application traffic.
    How are span-based metrics billed?
    Span-based metrics are counted towards your Custom Metrics allocation as outlined in your infrastructure plan.
    Can I run APM on web apps with Azure App Services (PaaS)?
    Yes, the Datadog extension for Azure App Services provides additional monitoring capabilities for Azure Web Apps, including full support for distributed tracing using automatic instrumentation, manual APM instrumentation to customize spans, Trace_ID injection into application logs, and submitting custom metrics using DogStatsD. Learn more with our documentation.
    What is considered as a host for Azure App Services?
    All Azure App Service Plan instances will count as Infrastructure hosts. In addition, if they are running the Datadog extension and submitting APM traces from a Web App, all instances in the underlying ASP will be counted as APM hosts.
    Are there other billing options?
    Annual, monthly and hourly plans are available. We can customize billing plans to meet your needs. For a detailed explanation of billing, please see our Billing FAQ.
    What is Data Streams Monitoring and how does it work?
    Datadog Data Streams Monitoring (DSM) allows you to track and improve the performance of event-driven applications that use Kafka and RabbitMQ. DSM automatically maps dependencies between all services and queues, measures latency between them, and provides additional health metrics, such as consumer lag, across your streaming data pipeline to help you monitor it end to end.
    What counts as a billable DSM host?
    A billable Data Streams Monitoring host is a host that has the Datadog Agent installed and producer and consumer services that are running on it and instrumented for DSM. Visit our documentation for additional setup information.
    What kind of billing plan do I need to run Data Streams Monitoring?
    Every billable DSM host requires the purchase of Pro or Enterprise Infrastructure Monitoring, regardless if it is combined with APM. Annual, month-to-month, and on-demand billing plans are available. For a detailed explanation of billing, please see our Billing FAQ.
    Can I purchase Data Streams Monitoring not as part of an APM plan?
    Yes, Data Streams Monitoring can be purchased on top of Pro or Enterprise Infrastructure Monitoring hosts starting at $15 per host per month with an annual commitment.
    Can I purchase APM Pro for a portion of my hosts and individual standalone products for the rest of my hosts?
    No. Customers can commit to only one of the plans across all their APM hosts, not a combination thereof. That said, APM-only customers can purchase Data Streams Monitoring and/or Continuous Profiler on a portion of their hosts, and APM Pro customers can purchase Continuous Profiler on a portion of their hosts.
    What Technologies do you support?
    DSM currently supports Java, Go, .NET/C# for Kafka and Java and Go for RabbitMQ. Support for additional technologies and programming languages is coming soon.
    How long is DSM data retained for?
    Map history is stored for 30 days and all metrics are retained for 15 months.
    What is Continuous Profiler?
    Continuous Profiler is a tool to observe and analyze code-level performance in your production environment at all times with minimal overhead. It allows developers to identify and optimize the most resource-consuming methods in their code. We provide comprehensive documentation and encourage you to take a read.
    What counts as a billable Continuous Profiler host?
    A billable Continuous Profiler host is a host that has profiling installed and enabled according to Datadog’s runtime-specific setup instructions (example) and submits profiles to the Datadog SaaS application.
    What kind of billing plan do I need to run APM Enterprise?
    Every billable Continuous Profiler host requires the purchase of Pro or Enterprise Infrastructure Monitoring, regardless if it is combined with APM. The price includes 4 containers running profiled applications per host, summed across all Profiled hosts. Every additional container costs $2. Annual, month-to-month, and on-demand billing plans are available. For a detailed explanation of billing, please see our Billing FAQ.
    I am an existing Continuous Profiler customer. Can I switch to the APM Enterprise plan?
    Yes. Existing Continuous Profiler customers have the option of changing their plan to APM Enterprise starting at $40 per host per month. Contact your Sales or Customer Success rep for help.'
    Can I purchase Continuous Profiler standalone?
    Yes, Continuous Profiler can be purchased standalone at $19 per profiled host per month with an annual commitment. Month-to-month and on-demand plans are also available at $23 per profiled host per month or $0.004 per hour. Contact us or reach out to your Sales or Customer Success rep for more details.
    Can I purchase APM Enterprise for a portion of my hosts and individual standalone products for the rest of my hosts?
    No. Customers can commit to only one of the plans across all their APM hosts, not a combination thereof. That said, APM-only customers can purchase Continuous Profiler and/or Data Streams Monitoring on a portion of their hosts, and APM Pro customers can purchase Continuous Profiler on a portion of their hosts.
    How do you define a profiled host?
    A profiled host is a physical or virtual operating system instance which is running a profiled application. To be profiled, the host would need to have the agent installed and profiling enabled. When combined with APM, every APM host is also a profiler host, and vice versa. The same logic applies to profiled containers. For more information visit our Billing FAQ.
    Which languages does Continuous Profiler support?
    Continuous Profiler supports Java, .NET, Go, Python, Ruby, .Node.js, and PHP. Support for C, C++, and Rust is in beta.
    How does Datadog Continuous Profiler work?
    Our profilers constantly collect representative samples of all stack traces, aggregate them over a 60-second time period and forwards them through the Datadog agent. This is done continuously in one-minute intervals which means you will never lose code-level visibility in your services. To profile your services, simply import our profiling library or enable an environment variable flag when you run the APM tracer.
    How do you ensure minimal performance impact in production?
    We use the latest, most cutting-edge technologies, such as the JDK Flight Recorder, to ensure that performance impact is minimal even with full production workloads. Additionally, our profilers do not interrupt or interfere with any of your service requests hence we introduce no additional request latency.
    How is profiling different from tracing?
    Tracing measures latency of requests across services in distributed systems, whereas profiling provides deeper insights on all that happened on the code level of the services.
    What are the benefits of Datadog Continuous Profiler?
    Continuous Profiler is tightly integrated with the rest of the Datadog platform and it extends our seamless correlations between metrics, traces, and logs to the code level. This is extremely useful for code performance optimization, cost savings on cloud provider bills, and reducing request latency for improved user experience.
    What types of profiles are available?
    CPU, Memory, Lock, Wall Time, Disk IO, Socket IO, Goroutines, Exceptions and many more profile types are available and may vary by programming language. For more information visit our documentation page.
    Are there other billing options?
    Annual, monthly and hourly plans are available. We can customize billing plans to meet your needs. For a detailed explanation of billing, please see our Billing FAQ.
    Is open source vulnerability detection a standalone offering?
    Without the DevSecOps bundle, our open source vulnerability detection capabilities can be bought with Datadog Software Composition Analysis (SCA).
    How do our open source vulnerability detection capabilities work with our DevSecOps bundle?
    When an APM-instrumented service starts, the tracer collects the list of libraries that the application is actively loading in production and reports the list of vulnerabilities associated to those libraries and versions
    What counts as a billable APM DevSecOps host?
    An APM DevSecOps host is an APM host on which our runtime open source vulnerability detection is enabled.
    What languages are supported by our open source vulnerability detection capabilities?
    Java, .NET, Node.JS, Python
    Is it possible to only activate open source vulnerability detection on some of my hosts?
    No, with APM DevSecOps, you must have runtime open source vulnerability detection on all APM hosts.
    Is this available in all regions?
    Yes
    Do you have special offerings for partners?
    We’re always looking to partner with technology and service providers and resellers. See our Partners page for more.

    Log Management

    Analyze and explore log data in context with flexible retention

    Ingest


    Starting At

    $ 0.10
    Per ingested or scanned GB,
    per month* **

    Ingest, process, enrich, live tail, and archive all your logs

    • Out-of-the-box parsing for 200+ log sources

    • Enrich and tag your logs for RBAC, cost control and usage allocation

    • Generate log-based metrics for long term analysis

    • Self-hosted archives, with the option to ad-hoc rehydrate back to Datadog

    • Dynamic routing to desired retention tier options

    *Per GB of uncompressed data ingested for processing, or compressed data scanned for rehydrating.
    **Billed annually or $0.10 on-demand

    Standard Indexing


    15-day retention
    $ 1.70
    Per million log events,
    per month*

    Contact Us for Pricing


    For real-time exploration, alerting, and dashboards with mission-critical logs

    • Prioritize logs for critical investigations

    • Build log alerts with Log Monitors

    • Detect log anomalies proactively with Watchdog Insights

    • Best suited for frequently accessed logs i.e. infrastructure, application, operational logs

    *Billed annually or $2.55 on-demand

    Ingest


    Starting At

    $ 0.10
    Per ingested or scanned GB,
    per month* **

    Ingest, process, enrich, live tail, and archive all your logs

    • Out-of-the-box parsing for 200+ log sources

    • Enrich and tag your logs for RBAC, cost control and usage allocation

    • Generate log-based metrics for long term analysis

    • Self-hosted archives, with the option to ad-hoc rehydrate back to Datadog

    • Dynamic routing to desired retention tier options

    *Per GB of uncompressed data ingested for processing, or compressed data scanned for rehydrating.
    **Billed annually or $0.10 on-demand

    Flex Storage


    Starting At

    $ 0.05
    Per million events stored,
    per month* **

    For historical investigations or security, audit, and compliance use cases

    • Flexible long-term retention up to 15 months without the need to rehydrate

    • Increased ROI on high-volume logs

    • Correlate with metrics and traces for deeper analysis

    • Best suited for infrequently accessed logs

    *Minimum retention of 1 month up to 15 months
    **Billed annually or $0.075 on-demand

    Flex Compute


    Extra Small
    $ 0.05
    Per instance-hour,
    per month*

    Contact Us for Pricing


    Multiple preconfigured compute options to suit your search and analytics workloads

    • Easily search for logs stored in both Standard and Flex Tier

    • Datadog-managed compute infrastructure

    • Scale up or down based on your query use cases

    • Customize compute choices based on business priority and environment i.e. staging, production

    Flex Logs Starter


    Starting At

    $ 0.60
    Per million events stored,
    per month* **

    For historical investigations and long-term retention

    • Retention options of 6 months, 12 months, and 15 months

    • Bundled Starter Compute for log volumes below 2B per month (10B total stored)

    • Easily search for logs stored in both Standard and Flex Tier without the need to rehydrate

    • Best suited for infrequently accessed logs that need to be retained for longer periods

    *Minimum retention of 6 months, options for 12 and 15 months
    **Billed annually or $0.90 on-demand


    Multi-Year/Volume discounts available (3B+ events/mo)

    Contact Us

    Log Forwarding to Custom Destinations


    Starting At

    $ 0.25
    Per GB outbound,
    per destination, per month*

    Centralize your log processing, enrichment and routing to multiple destinations

    • Forward your logs in real-time to any destination in just a few clicks

    • Collect, transform, and route logs to multiple destinations without the need to index

    • Low-latency, cloud scale throughput

    • RBAC-enabled

    *Per GB of uncompressed data forwarded per destination

    Features

    • Unlimited Sources

    • Faceted & Full-text Search

    • 800+ vendor-backed integrations

    • Custom Processing & Parsers

    • Log Analytics and Dashboarding

    • Log Anomaly Detection

    • Supports PCI and HIPAA compliance

    • Fully integrated with Datadog role-based access control (RBAC)

    • Enterprise-Grade Security

    • Unlimited User Accounts

    • Real-time Alerting

    • Logging without Limits™

    • Log-based custom metrics

    • Archive to AWS S3, Azure Blob Storage,
      and Google Cloud Storage

    • Log Rehydration™ from AWS S3, Azure Blob Storage, and Google Cloud Storage

    When Combined with Other Plans


    • Automated Infrastructure Tags

    • Pivot seamlessly to Infrastructure and APM

    Service and Support


    Common Questions


    Can I subscribe to Log Management without using Datadog Infrastructure or APM?
    Having all your infrastructure, APM, and log data under one roof is something we definitely encourage, but you can also subscribe only to Datadog’s Log Management. Learn how to configure only log collection here.
    I know my consumption in GB/day: how do I convert it into millions of log events?

    Log events come in all shapes and sizes, which is precisely why we offer event-based pricing! We want to encourage rich logs to provide the most value.

    The best way to get the number of log events during your Datadog trial is to run a count query over the last 24 hours and multiply by 30 days to estimate for the month. This can, of course, also be done in your current log management solution, if you have one.

    How do you define retention?

    The retention period is the number of days your logs are searchable and analyzable. After this period, logs disappear from your index(es).

    Logs removed from your index(es) do not have to be gone forever! Check out our Log Archives for long-term storage options.

    What retentions are available for on-demand customers?
    For on-demand customers, the default retention is 15 days. If you have already created a Datadog account and would like to use a different retention, you can request a different retention at support@datadoghq.com
    How can I be sure my data is secure?
    Security is our top priority. This includes, TCP/SSL Strict Transport Security, agent-level scrubbing and SOC 2 compliance. Our Agent is open-source, which means it can be reviewed to ensure it meets your security requirements.
    What happens if I send an unexpectedly high volume of logs?

    By committing to a monthly volume of logs, you aren’t rate-limited based on a single day's volume. Send as much as you need on any given day without losing visibility. Assuming your average is lower on other days, your bill is unaffected.

    In those cases where you have a big month, not to worry! You maintain complete visibility and pay for additional services (+50% of the annual price) only on the volume that exceeds your commitment.

    How can I manage my highly dynamic log volume in a cost-effective way without losing visibility?
    We’ve designed our Log Management offer knowing from day 1 that managing large and fluctuating log volumes is a common problem. We have various innovative solutions for this, which you can learn more about from our dedicated article here.
    When should I store logs in Standard Indexing vs Flex Logs?
    Log events can be stored in Standard Indexing when you need them for real-time troubleshooting and in Flex Logs for ad-hoc, historical analysis and long term troubleshooting. See our documentation to learn more.
    Do I have to choose only one type of retention between Standard Indexing and Flex Logs?
    Your indexes can have Standard Tier retention only, Flex Tier retention only, or a combination of Standard and Flex Tier.
    What do the different compute sizes in Flex Logs mean? Which one is appropriate for me?
    Compute is the querying capacity to run queries for Flex Logs. The compute size appropriate for you depends on the volume of data stored in the Flex Tier, the time window and complexity of your queries, and concurrency. For guidance on which compute size you should choose, see our documentation.
    Can I forward logs from one Datadog account to another?
    This is currently not supported.
    Is forwarding to S3 Archives, GCP Storage, and Azure Storage being billed?
    No. Forwarding to S3 Archives, GCP Storage, and Azure Storage is included with $0.10 per ingested GB. However, forwarding to other destinations such as your external SIEM or BI vendor is billable starting at $0.25 per GB outbound per destination.
    How is Rehydration billed?
    When you rehydrate logs, Datadog scans the compressed logs in your archive for the time period you requested, and then indexes only log events that match your rehydration query. Datadog charges $0.10 per compressed GB of log data that is scanned. For any log events indexed from a rehydration, the cost is equal to your contracted indexing rates for the retention period selected for the rehydration.
    How are log-based metrics billed?
    Log-based metrics count towards your Custom Metrics allocation as outlined in your infrastructure plan.
    Are there other billing options?
    Annual and monthly plans are available. We can customize billing plans to meet your needs. For a detailed explanation of billing, please see our Billing FAQ.

    Real User Monitoring & Session Replay

    Measure the end-to-end experience of web and mobile applications from your users’ perspective

    RUM


    Starting At

    $ 1.50
    Per 1,000 sessions, per month*

    • Optimize web applications and apps on iOS, Android and other platforms with OOTB performance metrics and alerts

    • Get visibility into code bugs and crashes using Error Tracking & Crash Reporting

    • Troubleshoot high latency and app freezes using Resources and Long Tasks

    • Automatic and custom tracking of page views and user actions inside user sessions

    • Understand and optimize key user flows using funnel analysis and frustration signals

    *Billed annually or $2.20 on-demand

    RUM & Session Replay


    Starting At

    $ 1.80
    Per 1,000 sessions, per month*

    Everything in RUM, plus:

    • View user problems firsthand by watching video-like replays

    • Exclude all user inputs by default using privacy options

    • Analyze bugs as they occur and understand their impact on performance using DevTools

    • Visualize user behavior through click interactions on Heatmaps

    *Billed annually or $2.60 on-demand


    Multi-Year/Volume discounts available

    Contact Us

    Features


    RUM

    RUM & Session Replay

    Features


    Sessions

    Icon/check Created with Sketch.

    Icon/check Created with Sketch.

    Views

    Icon/check Created with Sketch.

    Icon/check Created with Sketch.

    Actions

    Icon/check Created with Sketch.

    Icon/check Created with Sketch.

    Errors

    Icon/check Created with Sketch.

    Icon/check Created with Sketch.

    Resources

    Icon/check Created with Sketch.

    Icon/check Created with Sketch.

    Long Tasks

    Icon/check Created with Sketch.

    Icon/check Created with Sketch.

    Visual Replay of User Sessions

    Icon/check Created with Sketch.

    Heatmaps

    Icon/check Created with Sketch.

    Funnel Visualization

    Icon/check Created with Sketch.

    Icon/check Created with Sketch.

    Frustration Signals

    Icon/check Created with Sketch.

    Icon/check Created with Sketch.

    Performance Vitals

    Mobile & Core Web Vitals

    Core Web Vitals

    Out-of-the-box Dashboards

    Icon/check Created with Sketch.

    Icon/check Created with Sketch.

    Error Tracking

    Icon/check Created with Sketch.

    Icon/check Created with Sketch.

    When combined with other products


    Frontend-to-backend visibility with the APM integration

    Icon/check Created with Sketch.

    Icon/check Created with Sketch.

    Query, analyze, visualize and alert on your application data

    Icon/check Created with Sketch.

    Icon/check Created with Sketch.

    Support Plans


    From basic plans to bespoke offerings, Datadog offers the right level of support for any organization.

    LEARN MORE ABOUT OUR SUPPORT PLANS

    Common Questions


    How is a session defined?
    A session is a user journey on your web application. It expires after 15 minutes of inactivity and lasts up to 4 hours. For a detailed explanation of user sessions, please see our docs.
    What data does Datadog’s RUM collect?
    We collect events across browser and mobile applications on various platforms. Our SDKs collect events automatically or can be instrumented to capture custom events. For mobile platforms supported, please refer to our Mobile RUM documentation. We capture the following events: page views, buttons clicked called actions, network requests called resources, and long tasks. For each event captured, we capture attributes that provide information about the event. Refer to our Browser RUM and Android, iOS, React Native, and Flutter RUM documentation
    How does Session Replay work?
    Session Replay works on web applications running on desktop browsers or mobile browsers. It captures changes in the web page code, called DOM and DOM-mutations, to recreate a user’s experience in real-time in the browser.
    What Mobile languages do you support instrumentation for?
    We currently support Android (Java and Kotlin), iOS (Swift and Objective-C), and React Native, Flutter
    Can I view logs from my browser or mobile app in RUM?
    Yes, these logs are automatically tied to the corresponding RUM session, making it easy to monitor when they happen during the user journey.
    How can I begin setting up for RUM?
    Setup steps can be found in our docs: Browser, Session Replay, Mobile.

    Test Optimization

    Monitor, debug, and accelerate every test suite across your entire CI environment

    Starting At

    $ 20
    Per committer,
    per month*

    • Detect tests that fail or slow down your CI pipelines

    • Catch and prevent flaky tests from being merged

    • Lower CI costs through improved testing efficiency

    • Improve testing quality and developer productivity

    *Billed annually or $29 on-demand

    Features

    • Automatic detection of flaky tests and performance regressions

    • Flaky test full lifecycle management

    • Test Impact Analysis that skips tests irrelevant to a code change

    • Granular visibility into test performance with distributed tracing and stack traces

    Common Questions


    How do you define a committer?
    A committer means an active Git committer; they are identified through their Git author email address. A committer is counted towards billing if they commit at least 3 times in a given month.
    Can I purchase more than one software delivery plan for my team?
    Yes, customers can purchase a combination of software delivery plans. For example, for a team of 10, you can have 10 committers billed for CI Visibility and 5 committers billed for Test Optimization.
    How do you define a span?
    Every individual test run is considered a span in Test Optimization.
    How many spans are allotted?
    1,000,000 spans per committer per month or 1,370 spans per committer per hour (both summed across all Test Optimization committers). Additional test spans can be purchased at $3 per million spans per month.
    What is the span retention period?
    Test spans are retained for 3 months.
    Can I modify the span retention period?
    No, the span retention period cannot be modified.
    What CI providers does Test Optimization support?
    Test Optimization is compatible with any CI provider(not limited to those supported by CI Visibility).
    What languages does Test Optimization support for tests?
    Test Optimization directly supports .NET, Java, JavaScript, Python, Swift, and Ruby. Other languages and test frameworks are supported by using JUnit xml.
    How does Test Impact Analysis identify which tests to skip?
    Datadog automatically collects which files are covered by any given test. Based on the files that have been modified in any given code commit, we skip all irrelevant tests. Learn more.

    Universal Service Monitoring

    Automatically discover, map, and monitor all your services—without changing code

    Starting At

    $ 9
    Per Infrastructure host,
    per month*

    • Automatically discover all 1st and 3rd party services and their dependencies

    • Monitor real-time performance metrics of every service in one place

    • Standardize monitoring best practices across all teams

    *Billed annually or $13 on-demand


    Multi-Year/Volume discounts available

    Contact Us

    Features

    • Automatic service discovery with no code changes

    • Real-time service dependency map

    • Real-time throughput, error, and latency metrics

    • Easy-to-set-up SLOs with consistent SLIs

    • Machine learning-based monitors

    • Automatically populated Service Catalog

    • Service ownership management

    • Source code and Pagerduty integrations

    • Drag & drop dashboards with template variables

    • Support for every programming language

    When Combined with Other Plans


    • Pivot seamlessly to related metrics, traces, logs and code profiles during investigations

    • Correlate service performance and reliability with security signals

    Service and Support


    • Technical support across chat and email

    • Community Forum and Online Docs

    Common Questions


    What is Universal Service Monitoring (USM) and how does it work?
    Universal Service Monitoring (USM) uses the revolutionary eBPF technology (kernel-level) to provide request, error, and latency metrics for the entire fleet of services in seconds, with no code changes and regardless of programming language. To learn more please read our documentation and blog.
    What kind of billing plan do I need to run USM?
    Datadog USM must be purchased in addition to Infrastructure Monitoring. One option is to purchase USM for all Infrastructure Monitoring hosts on your plan (starting at $9 per host per month).
    Can I purchase USM for a subset of my Pro or Enterprise Infrastructure hosts?
    Yes. If you would like to set up USM on a subset of your Pro or Enterprise Infrastructure hosts, you would need to purchase APM. Every purchase of an APM host now includes USM on that host at no additional cost, starting at $31 per host per month.
    I am an existing Infrastructure Monitoring customer. Can I add USM to my plan?
    Yes. Existing Infrastructure Monitoring customers can add USM to all their Pro or Enterprise hosts for an additional $9 per host per month (starting price with an annual commitment). Reach out to your Customer Success Manager for further details.
    What types of Infrastructure does USM support?
    USM currently supports containerized environments and non-containerized environments. For more information please visit our documentation.
    Does USM support serverless technologies?
    Serverless technologies such as ECS Fargate, EKS Fargate, and AWS Lambda are not currently supported.
    What operating systems does USM support?
    USM currently supports most Linux (4.14+) or CentOS/RHEL (8.0+) environments and Windows IIS-based services (Windows 2012 R2+). For more information please visit our documentation.
    Which programming languages and network protocols does USM support?
    USM is programming language-agnostic and currently supports containerized applications that communicate using HTTP and HTTPS (OpenSSL and GnuTLS are supported). For more information please visit our documentation.
    What is the difference between USM and Datadog APM?
    USM automatically discovers, maps, and catalogs your 1st- and 3rd-party services without requiring any redeployment and regardless of programming language. This allows you to gain instant visibility into their health metrics and dependencies, and quickly detect issues anywhere in your application. Datadog APM allows you to easily troubleshoot issues with distributed traces and code profiles that provide request- and code-level visibility for fast root-cause analysis and resolution.
    Can I purchase USM and APM on the same host?
    Yes. You can set up USM on all your Pro or Enterprise Infrastructure hosts and set up APM and distributed tracing on all or a subset of these hosts. This applies to both existing and new Datadog APM customers.
    How does billing work if I purchase USM and APM on the same host?
    If both USM and APM are purchased and/or installed on the same host, you will only pay the APM price, based on your APM plan.
    Are there other billing options?
    Annual, monthly, and hourly plans are available in combination with Infrastructure Monitoring. We can customize billing plans to meet your needs. For a detailed explanation of billing, please see our Billing FAQ or reach out to your account manager.

    Application Security Management

    Secure web-apps and APIs with context-aware vulnerability and threat management

    Software Composition Analysis (SCA)


    Starting At

    $ 10
    Per host,
    per month*

    • Identify vulnerabilities in open-source libraries

    • Prioritize vulnerabilities based on CVSS and context (exposure, threat activity, exploitability)

    • Accelerate remediation with Jira integrations and service ownership insights

    *Billed annually or $15 on-demand

    Threat Management


    Starting At

    $ 31
    Per host,
    per month*

    • Detect OWASP attacks in real-time

    • Protect web application by blocking suspicious requests or bad actors

    • Investigate with runtime execution context and attack flow

    *Billed annually or $36 on-demand

    Features

    Add-ons


    Threat Management for AWS Fargate

    $2 per task ($2.90 on demand)

    Software Composition Analysis for AWS Fargate (serverless containers)

    $1 per task ($1.40 on demand)

    Serverless Applications - AWS Lambda (Threat Management Only)

    $2 per million traced invocations ($2.90 on demand)

    • Context rich signals by leveraging distributed traces

    • Pivot to observability telemetry during investigations

    • Deployment in minutes

    • Unlimited user accounts

    • 15-month retention of security signals

    • 90 day retention of suspicious requests

    When Combined with Other Plans


    • One interface to correlate application threats with host & workload level threats or misconfiguration

    Service and Support


    • Technical Support (Chat and Email)

    • Community Forum and Online Docs

    Common Questions


    Is ASM a standalone offering? Can SCA and ASM (Threat Management) be sold separately?
    ASM (Threat Management) and SCA can be sold separately, but both offerings require Datadog APM.
    How does Application Security Management work?
    ASM leverages Datadog libraries to detect vulnerabilities and threats on your applications. The library collects telemetry on the third-party libraries running within your web-applications and embeds an in-app WAF to detect and block attacks based on configurable rules. Please refer to the documentation to learn more.
    What counts as a billable Application Security Management host?
    Similar to APM, a billable ASM host is a host on which ASM is enabled and that is actively submitting spans to the Datadog SaaS application.
    What languages does Application Security Management support?
    Java, Ruby, Go, Node, .NET and PHP. Python. ASM also supports Fargate environments as well as serverless functions.
    Do I have to deploy the product across all my APM hosts?
    No, you have the ability to select the service to activate the product with.
    Are there other billing options?
    Annual, monthly and hourly plans are available. We can customize billing plans to meet your needs. For a detailed explanation of billing, please see our Billing FAQ.
    Is this available in all regions?
    Yes. Application Security Management is available in all EU-, JP- and US-hosted accounts.
    Do you have special offerings for partners?
    We’re always looking to partner with technology and service providers and resellers. See our Partners page for more.

    Sensitive Data Scanner

    Discover, classify, and redact your sensitive data
    in real time at any scale

    Starting At

    $ 0.30
    Per scanned GB,
    per month*

    • Out-of-the-box and customizable detection rules

    • Sensitive data detection across all ingested data, regardless of source

    *Billed annually or $0.45 on-demand

    Features

    • Real-time sensitive data discovery and classification

    • Out-of-the-box and custom rule capabilities

    • Fully integrated with Datadog role-based access control (RBAC)

    • Stream-based pattern matching across your data

    • Granular control over data scanning and classification with scanning groups

    • Fully integrated with Datadog alerts and dashboards for compliance tracking and investigation

    • Correlate data using standard and custom tags

    • Supports data from Log Management, APM, and RUM

    When Combined with Other Plans


    • Pivot seamlessly to related metrics, traces, and logs during investigations

    • Correlate security signals and detailed observability data

    Service and Support


    Common Questions


    How does Sensitive Data Scanner work?
    Sensitive Data Scanner works by using pattern-matching rules to classify and track sensitive data, and optionally scrubbing or hashing that data to prevent it from being exposed. Learn more from our documentation.
    Can I filter out which logs are scanned?
    Yes. Datadog allows you to set up multiple scanning groups that can be used to filter logs out using tags or log attributes.
    How do I set up a scanning rule?
    By either using a rule from the library or defining a custom rule. Learn how in our documentation.
    What are the different options for handling sensitive data?
    The Datadog Agent provides you with solutions to prevent compliance-sensitive data from being sent outside of your platform, including scrubbing. Check out more info in our documentation.
    How do I ensure confidentiality / access controls for my scanning rules?
    Sensitive Data Scanner is fully integrated with Datadog role-based access control (RBAC) so you can easily control which roles and users have access.
    Is this available in all regions?
    Yes. Sensitive Data Scanner is available in all EU- and US-hosted accounts.
    Are there other billing options?
    Annual and monthly plans are available. We can customize billing plans to meet your needs. For a detailed explanation of billing, please see our Billing FAQ.
    Do you have special offerings for partners?
    We’re always looking to partner with technology and service providers and resellers. See our Partner Network page for more.

    Incident Management

    Manage incidents alongside rich, contextual observability data

    Starting At

    $ 30
    Per seat,
    per month*

    • Declare incidents directly from observability signals within Datadog

    • Embed real-time telemetry data into incident timelines and postmortems

    • Manage and resolve incidents directly in Slack or MS Teams

    • Instantly create AI-generated postmortems

    • Calculate key incident metrics through OOTB dashboards

    *Billed annually or $36 billed month-to-month

    Features

    • Declare incidents from signals, dashboards, and 3rd-party integrated apps

    • Automatically create a Slack or MS Teams channel when an incident is declared

    • Sync incidents with Jira or ServiceNow tickets

    • Surface insights from Datadog directly in Slack using Bits AI

    • Pull dynamics graphs and data from across Datadog into incident timelines and postmortems

    • Generate postmortem drafts using AI or templates

    • Deploy OOTB, real-time dashboards to measure MTTR, MTTD, and incident trends

    When Combined with Other Plans


    • Declare incidents from monitors, security signals, cases, graphs, and synthetic tests

    • Set up webhooks from monitors and runbooks for autoremediation

    • Create workflows and apps for autoremediation and processes improvement

    Service and Support


    Common Questions


    What actions require a seat?
    A seat is required to be an active responder in an incident. Anyone without a seat can view incidents and join incident channels without a license.
    Do users get double charged if they are in more than one org?
    No, we charge based on unique seats across the organizations where users have accounts.
    Is there a limit on the number of incidents that a user or org can create?
    No. All users have access to create unlimited incidents, postmortems, and integrations.
    What external tools does Datadog’s Incident Management integrate with?
    Native integrations are available for Slack, MS Teams, Jira, ServiceNow, Zoom, and Status Page. Check out our Docs for more information.
    Does Datadog have an on-call and paging solution?
    Yes. Datadog On-Call provides a modern experience with observability-enriched paging to unify monitoring, paging, and incident remediation into a single platform.
    Can I use Datadog Incident Management without using other Datadog products?
    Datadog Incident Management can be used as a standalone incident management solution for your team, or as a central hub in-app to consolidate the tools and processes you already use.

    Network Monitoring

    Monitor devices and traffic flows for complete network visibility

    Network Performance Monitoring


    Starting At

    $ 5
    Per host,
    per month*

    Understand network traffic patterns and search with tags

    • Visualize flows on the network map

    • Slice-and-dice traffic by host, process, container, service, AZ, and more

    • Analyze system-wide DNS performance

    *Billed annually or $7.20 on-demand

    Network Device Monitoring


    Starting At

    $ 7
    Per device,
    per month*

    Monitor the health and performance of on-premise network devices

    • Out-of-the-box metrics collected from switches, routers, firewalls and more

    • Visualize interface bandwidth and utilization, disk, fan, and other hardware health

    • Comprehensive and customizable alerts

    *Billed annually or $10.20 on-demand

    NDM Netflow
    Monitoring


    30-day retention
    $ 0.65
    per million records,
    per month*

    Contact Us for Pricing


    Monitor traffic trends and bandwidth usage for NetFlow-enabled devices

    • Identifying top talkers, top listeners, and top protocols

    • Pivot your view by filtering NetFlow records to fields such as interface, device, and application

    • Visualize your NetFlow data over time with our OOTB dashboard

    *Billed annually or $0.94 on-demand

    Features

    • Network traffic mapping

    • Meaningful traffic aggregation

    • Hybrid, on-premise, and cloud coverage

    • User-defined tagging

    • Device autodiscovery

    • Deployment in minutes

    When Combined with Other Plans


    • Pivot seamlessly to Infrastructure, APM and Logs

    • Automated Infrastructure Tags

    Service and Support


    Common Questions

    How do you define a host?
    A host is any physical or virtual machine that has the Datadog agent installed with Network Performance Monitoring enabled.
    How do you define an NPM flow?
    A flow is a record of traffic sent and received between a source (IP:Port) and destination (IP:Port) over a five minute time period. In some cases, similar destinations are grouped into a single flow to reduce the total flow count.
    How many NPM flows are allotted per host?
    Datadog offers an allotment of 6 million NPM flows for every host monitored with network monitoring. NPM flows are averaged across your entire account, not just on a per-host basis.
    Does Network Performance Monitoring work with containers?
    Yes, Datadog Network Performance Monitoring is designed to work in containerized and highly dynamic environments. User-defined tags allow you to slice and dice network flows by almost anything, including containers, clusters, pods, and deployments.
    Do I need to purchase other Datadog products to use NPM or NDM?
    Having all your infrastructure, traces, logs, and network information under one roof is something we encourage for comprehensive visibility, however, it is not required. Network Performance Monitoring requires the purchase of an Infrastructure Pro or Enterprise plan for every host that NPM is monitoring. Network Device Monitoring only requires the purchase of one or more infrastructure hosts which are used to poll devices.
    How do you define a device?
    A device is a physical or virtual appliance with a unique IP address that is polled using SNMP.
    How are SNMP Traps billed?
    Datadog is not currently billing customers for traps.
    How do you define a NetFlow record?
    NetFlow is a network protocol created by Cisco that describes the flow of traffic across network devices. We support all NetFlow versions, including jFlow, sFlow, IPFIX or standard NetFlow v5 or v9. The Datadog agent aggregates raw NetFlow data overtime to send on a regular basis (the default being 5 mins, this can be customized).
    What are retention options for NetFlow Monitoring?
    We offer 15, 30, 60, and 90 day retention for NetFlow records with the default retention being 30 days. Please contact us for additional retention durations and inquires about pricing.
    Do I need to purchase other Datadog products to use NPM or NDM?
    Having all your infrastructure, traces, logs, and network information under one roof is something we encourage for comprehensive visibility, however, it is not required. Network Performance Monitoring requires the purchase of an Infrastructure Pro or Enterprise plan for every host that NPM is monitoring. Network Device Monitoring only requires the purchase of one or more infrastructure hosts which are used to poll devices.

    Synthetic Testing & Monitoring

    API, Browser and Mobile App Tests for proactive, end-to-end visibility

    API Testing


    Starting At

    $ 5
    Per 10K test runs, per month*

    Proactively monitor site availability

    • Monitor uptime SLAs and SLOs

    • Globally managed locations

    • Sophisticated alerting capabilities

    *Billed annually or $7.20 on-demand

    Browser Testing


    Starting At

    $ 12
    Per thousand test runs,
    per month*

    Easily monitor critical user journeys

    • Record tests without code

    • Intelligent, self-maintaining tests

    • View screenshots and front-end errors for every step

    *Billed annually or $18 on-demand

    Mobile App Testing


    Starting At

    $ 50
    Per hundred test runs,
    per month*

    Proactively monitor your key business flows using real devices

    • Record tests without code

    • Run tests on real Android and iOS devices

    • Intelligent, self-maintaining tasks

    • View screenshots and front-end errors for every step

    *Billed annually or $72 on-demand

    Continuous Testing (add-on)


    Starting At

    $ 79
    Per additional parallelization,
    per month*

    Increase the speed of your test runs in the CI

    • Run multiple tests at the same time across your test environments to expedite release cycles and reduce test durations

    • Analyze tests across your pipelines in the Synthetic Monitoring & Continuous Testing Explorer and search using facets on test durations, commit author, pipeline, and more

    *Billed annually or $114 on-demand

    Features

    • Track site uptime and latency

    • Understand global performance

    • Track SLAs and SLOs

    • Customize frequency of test runs

    • Latency display of DNS, SSL, TTFB, and more.

    • Web-Recorder for code-free test creation

    • AI-driven Self-Maintaining Tests

    • Waterfall visualization and screenshots

    • Real-time alerting with rich context

    • Easy sorting and filtering with tags

    When Combined with Other Plans


    • Full stack visibility

    • Pivot to related metrics, traces, and logs

    Service and Support


    Common Questions

    What’s the difference between API Tests and Browser Tests?
    API Tests monitor single endpoints or URLs, whereas Browser Tests monitor web business transactions or web user journeys that may involve several actions and pages. Multistep API tests are also available to chain several API requests together.
    Are you able to alert on Synthetic monitors?
    Yes, alerts are built in and triggered automatically when your tests fail. Datadog also integrates with your favorite collaboration/communication tools such as Slack, Pagerduty, ServiceNow, and more.
    Can I view endpoint requests end-to-end?
    Yes, with the out-of-the-box APM integration, you are able to tie back any synthetic tests to their corresponding back-end, code-level insights for minimal mean time to resolution.
    Is there any extra charge for using private locations?
    No. There are no additional costs to set up a private location. All test runs to a private location are billed just as they are to a managed location.
    What counts as an API test run?

    HTTP, SSL, DNS, TCP, and ICMP all fall under API test billing. Each hit being made on your endpoint counts as a single test run. If a test is set to run from 3 locations every minute, the test will count as 180 test runs in an hour.

    For multistep API tests, each step counts as an individual API test.

    What counts as a browser test run?
    Each simulation of a full transaction (25 steps) counts as a single test run. A single test containing 50 steps counts as 2 test runs on each execution. So, running a 51 step test (counting as 3 test runs) every 15 minutes from 5 different locations and 2 different devices means the test will count as 120 test runs in an hour.
    How do browser test subtests participate in Synthetics billing?
    Subtests are treated just as any other step in the browser test. Therefore, we bill a subtest as part of the overall test execution. So if a user sets up a browser test with 3 subtests, that each have 5 steps nested, that would amount to a total of 15 steps.
    Is there any extra charge for enabling Synthetic RUM data collection on Browser Tests?
    No. Synthetic RUM data collection comes free of charge with Synthetic Testing and Monitoring.
    How is Mobile App Testing billed?
    Similar to API and Browser Synthetic Testing, Mobile App Testing is billed per test run.
    Is there a limit of the number of steps in a test run?
    No. However Mobile App Testing does group test steps into buckets with each set of 25 steps counted as an individual test run. For example, tests with 1-25 steps will count as 1 run, tests with 25-50 will count as 2 runs, tests with 51-75 will count as 3 runs and so on.
    How are test runs calculated in Mobile App Testing?
    To calculate test runs take the number of buckets (sets of 25 steps) you have in your test and multiply this by the number of devices you have selected for your test. For example, if you have a test with 26 steps and 2 devices selected this will count as 4 test runs (2 sets of 25 steps * 2 devices) and if you run this test on an hourly basis this will come out to 96 test runs per day (2 sets of 25 steps * 2 devices * 24 hours).
    Does Mobile App Testing use real devices or emulators / virtual devices?
    Mobile App Testing uses real devices, i.e. physical phones and tablets which are connected via the cloud, to provide the most realistic testing possible. With real devices we can more accurately represent the hardware, software and network conditions your actual users will face.
    How does Mobile App Testing on real devices work?
    We have a fleet of real devices maintained in our managed cloud infrastructure. Once you select your preferred device (iOS or Android) to test your app with, Datadog MAT connects with that real device over cloud and sets the app for the test.
    What devices does Mobile App Testing support?
    MAT supports the most popular devices (smartphones and tablets) across Android and iOS, including the iPhone, iPad, Samsung Galaxy, Google Pixel and more, and we are constantly increasing support for new devices and OS versions as they become available.
    What data center is Mobile App Testing available in?
    Datadog Mobile App Testing is currently available to all US1, US5, and EU1 customers. All app tests will be run from the AWS US West region.
    How can I begin setup for Mobile App Testing?
    To begin testing with MAT: (1) Upload the app you would like to test to the platform, (2) Select Mobile Application Test from the modal New Test under UX Monitoring or on the Synthetics home page, (3) Select the devices you would like to test with, (4) Record your test case and (5) execute your test! You can read more about how to configure your tests here.
    Can I run tests in parallel with Mobile App Testing?
    Yes. By default, tests executed through the API / CI are executed sequentially however if you would like to run your tests in parallel for faster execution you can purchase additional concurrency slots with our Continuous Testing SKU. Learn more about Continuous Testing here.
    Can I set up alerts on Mobile App Testing monitors?
    Yes, alerts are built in and triggered automatically when your tests fail. Datadog also integrates with your favorite collaboration/communication tools such as Slack, Pagerduty, ServiceNow, and more.
    Does Mobile App Testing support testing progressive web apps?
    No. Datadog Mobile App Testing only tests native Android and iOS apps. If you would like to test your progressive web app, you can use Datadog’s Browser Testing product which allows you to test both desktop and mobile websites. Learn more about Browser Testing here.
    What are “Self-maintaining Tests” and how do they work?
    The self-maintaining test capability uses an AI-driven multi-locator algorithm to detect UI changes in the app and automatically updates your tests. This reduces alert fatigue and makes test maintenance easy.
    Does Mobile App Testing currently provide end-to-end visibility with APM and RUM?
    Mobile App Testing currently integrates with RUM, similar to Browser Testing, allowing you to correlate synthetic tests with real-user data and insights. At this time, Mobile App Testing does not directly link with APM to provide out-of-the-box backend traces (traces are still available but requires you to manually correspond with your tests).
    How do mobile app test subtests participate in Synthetics billing?
    Subtests are treated just as any other step in the mobile app test. Therefore, we bill a subtest as part of the overall test execution. So if a user sets up a mobile app test with 3 subtests, that each have 5 steps nested, that would amount to a total of 15 steps.
    Are there other billing options available?
    Annual, monthly and hourly plans are available. We can customize billing plans to meet your needs. For a detailed explanation of billing, please see our Billing FAQ.
    What is Continuous Testing?

    Datadog Continuous Testing is a comprehensive toolkit in the development cycle that offers integration and end-to-end testing with codeless test setup, self-healing capability, and seamless integration with CI providers (GitHub Actions, Azure DevOps, CircleCI, GitLab, and Jenkins) and collaboration tools to help you ship high-quality features to your users quickly.

    Running tests in your CI/CD pipelines today is included with your API and Browser Testing test runs, and tests will run sequentially (one after another). If you would like to increase the speed of testing in your CI/CD pipelines, you can purchase additional Parallel Testing speed (parallelization), which makes some tests run at the same time.

    For example, 1 Parallel Testing additional speed offers an additional parallel slot, allowing you to run 2 tests in parallel; 2 Parallel Testing additional speed offers 2 additional parallel slots, allowing you to run 3 tests in parallel; and so on. This helps you run more tests in parallel (at the same time), and reduce the overall execution speed of your test suite.

    Am I limited to a certain number of test runs based on my additional parallelization?

    No. With Parallel Testing, you can run as many tests as you need in your CI/CD pipelines. Parallelization ensures you can run more of those tests at the same time, and ultimately reduce the duration of testing in your CI/CD pipelines.

    For example, if you want to run 100 tests in a CI pipeline and each test takes 10 seconds to run:

    • WITHOUT parallelization, your tests will run sequentially and your pipeline will take roughly 17 minutes to complete.
    • WITH parallelization, if you purchase (for example) an additional speed of 4 Parallel Testing, your 100 tests will run over a total of 5 parallel slots, and your pipeline will now take roughly 3 minutes to complete.

    Note: In both cases, your 100 test runs will contribute to your API or Browser Testing test run quotas.

    Can I reuse my Synthetic tests that I use to monitor my production environments?
    Yes. With Parallel Testing, you can use the same Synthetic tests you have configured for production monitoring across all of your staging, QA, and pre-production environments. Through variable overrides and custom configuration values, you can benefit from one test throughout your entire software development lifecycle.
    What are parallel tests?

    Parallel tests are tests that run simultaneously in your continuous integration and delivery pipelines to ensure that you can:

    • Reduce pipeline duration and ship new features faster
    • Increase development confidence and speed of delivery
    • Have complete test coverage and reduce the volume of production-breaking bugs from reaching your codebase

    As an example, if you needed to run 60 tests and each test took one minute to run, it would take you one hour to run those tests sequentially. However, running those tests in parallel with a parallelization value of 60, you could run all your tests at the same time and within one minute, saving you 59 minutes to tackle other business-critical tasks. That's the power of Parallel Testing.

    Can I see the full trace of a test if I also use Datadog APM?
    Yes! If you instrument your services with APM, you will have a complete 360-degree visibility into your applications and services—from your frontend user experience right through to your backend trace. Find more information here.
    What counts as a browser test run?
    Each simulation of a web transaction (up to 25 steps) counts as a single browser test run. A single test containing 50 steps would count as two test runs on each execution. For example, running a 60-step test (three test runs) every 15 minutes from five different locations and two different devices equates to 120 test runs in one hour.
    How do subtests count toward billing?
    Subtests are simply a set of steps within a browser test. Therefore, we count a subtest as part of the overall browser test execution. For example, if you set up a browser test with only three subtests and each subtest had five steps, that would amount to a total of 15 steps, or one browser test run.

    Software Composition Analysis (SCA)

    Continuous, real-time open source vulnerability management

    Starting At

    $ 10
    Per host,
    per month*

    • Identify vulnerabilities in open-source libraries in application services

    • Prioritize vulnerabilities based on active risk posed in production

    • Accelerate remediation with Jira integrations and service ownership insights

    *Billed annually or $15 on-demand

    Features

    Add-ons


    Software Composition Analysis for AWS Fargate (serverless containers)

    $1 per task ($1.40 on demand)

    Common Questions


    What counts as a billable Datadog SCA host?
    Similar to APM, a billable Datadog SCA host is a host on which Datadog SCA is enabled and that is actively generating spans that are being submitted to the Datadog SaaS application.
    What kind of billing plan do I need to run Software Composition Analysis?
    Datadog SCA is only available to customers of Datadog Application Performance Monitoring (APM). Based on customer needs, detection of vulnerable open-source libraries in production is available in our APM DevSecOps plans. Learn more here.
    How does Datadog SCA work?
    When an APM-instrumented service starts, the tracer collects the list of libraries that the application is actively loading and reports the list of vulnerabilities associated with those libraries. Additionally, for supported languages and Continuous Integration (CI) pipelines, Datadog will also collect the libraries in the CI pipeline (beta).
    What languages does Datadog SCA support?
    Java, .NET, Node.JS, Python, Ruby, Go, and PHP
    Do I have to deploy the product across all my APM hosts?
    No, you have the ability to select the hosts you want to activate the product on.
    Is this available in all regions?
    Yes
    Do you have special offerings for partners?
    We’re always looking to partner with technology and service providers and resellers. See our Partners page for more.

    Continuous Testing

    Fast, codeless, and reliable testing that helps you ship features with confidence

    API Testing


    Starting At

    $ 5
    Per 10K test runs, per month*

    Test API endpoints and workflows

    • Easily configure and run single or multistep API tests

    • Globally managed locations

    *Billed annually or $7.20 on-demand

    Browser Testing


    Starting At

    $ 12
    Per thousand test runs,
    per month*

    Provide the best end-user experiences

    • Record tests without code

    • Intelligent, self-healing tests

    • Step-by-step screenshots and error reporting

    • Globally managed locations

    *Billed annually or $18 on-demand

    Mobile App Testing


    Starting At

    $ 50
    Per hundred test runs,
    per month*

    Proactively monitor your key business flows using real devices

    • Record tests without code

    • Run tests on real Android and iOS devices

    • Intelligent, self-maintaining tasks

    • View screenshots and front-end errors for every step

    *Billed annually or $72 on-demand

    Continuous Testing (add-on)


    Starting At

    $ 79
    Per additional parallelization,
    per month*

    Increase the speed of your test runs in the CI

    • Run multiple tests at the same time across your test environments to expedite release cycles and reduce test durations

    • Analyze tests across your pipelines in the Synthetic Monitoring & Continuous Testing Explorer and search using facets on test durations, commit author, pipeline, and more

    *Billed annually or $114 on-demand


    Multi-Year/Volume discounts available

    Contact Us

    Features

    When Combined with Other Plans


    • Full stack visibility with APM integration

    • Pivot to related metrics, traces, and logs

    Service and Support


    Common Questions


    What is Continuous Testing?

    Datadog Continuous Testing is a comprehensive toolkit in the development cycle that offers integration and end-to-end testing with codeless test setup, self-healing capability, and seamless integration with CI providers (GitHub Actions, Azure DevOps, CircleCI, GitLab, and Jenkins) and collaboration tools to help you ship high-quality features to your users quickly.

    Running tests in your CI/CD pipelines today is included with your API and Browser Testing test runs, and tests will run sequentially (one after another). If you would like to increase the speed of testing in your CI/CD pipelines, you can purchase additional Parallel Testing speed (parallelization), which makes some tests run at the same time.

    For example, 1 Parallel Testing additional speed offers an additional parallel slot, allowing you to run 2 tests in parallel; 2 Parallel Testing additional speed offers 2 additional parallel slots, allowing you to run 3 tests in parallel; and so on. This helps you run more tests in parallel (at the same time), and reduce the overall execution speed of your test suite.

    Am I limited to a certain number of test runs based on my additional parallelization?

    No. With Parallel Testing, you can run as many tests as you need in your CI/CD pipelines. Parallelization ensures you can run more of those tests at the same time, and ultimately reduce the duration of testing in your CI/CD pipelines.

    For example, if you want to run 100 tests in a CI pipeline and each test takes 10 seconds to run:

    • WITHOUT parallelization, your tests will run sequentially and your pipeline will take roughly 17 minutes to complete.
    • WITH parallelization, if you purchase (for example) an additional speed of 4 Parallel Testing, your 100 tests will run over a total of 5 parallel slots, and your pipeline will now take roughly 3 minutes to complete.

    Note: In both cases, your 100 test runs will contribute to your API or Browser Testing test run quotas.

    Can I reuse my Synthetic tests that I use to monitor my production environments?
    Yes. With Parallel Testing, you can use the same Synthetic tests you have configured for production monitoring across all of your staging, QA, and pre-production environments. Through variable overrides and custom configuration values, you can benefit from one test throughout your entire software development lifecycle.
    What are parallel tests?

    Parallel tests are tests that run simultaneously in your continuous integration and delivery pipelines to ensure that you can:

    • Reduce pipeline duration and ship new features faster
    • Increase development confidence and speed of delivery
    • Have complete test coverage and reduce the volume of production-breaking bugs from reaching your codebase

    As an example, if you needed to run 60 tests and each test took one minute to run, it would take you one hour to run those tests sequentially. However, running those tests in parallel with a parallelization value of 60, you could run all your tests at the same time and within one minute, saving you 59 minutes to tackle other business-critical tasks. That's the power of Parallel Testing.

    Can I see the full trace of a test if I also use Datadog APM?
    Yes! If you instrument your services with APM, you will have a complete 360-degree visibility into your applications and services—from your frontend user experience right through to your backend trace. Find more information here.
    What counts as a browser test run?
    Each simulation of a web transaction (up to 25 steps) counts as a single browser test run. A single test containing 50 steps would count as two test runs on each execution. For example, running a 60-step test (three test runs) every 15 minutes from five different locations and two different devices equates to 120 test runs in one hour.
    How do subtests count toward billing?
    Subtests are simply a set of steps within a browser test. Therefore, we count a subtest as part of the overall browser test execution. For example, if you set up a browser test with only three subtests and each subtest had five steps, that would amount to a total of 15 steps, or one browser test run.

    Audit Trail

    Maintain compliance, enforce platform governance, and build transparency

    Starting At

    2% of monthly spend*

    • Get full visibility into user access and platform changes across all services, empowering DevOps and compliance teams with context-rich insights.

    *Billed annually or 3% on-demand

    Features

    • Audit all access and configuration activity across Datadog Platform

    • Search and analyze detailed audit events for up to 90 days

    • Archive audit events for long-term retention

    • Fully integrated with Datadog alerts and dashboards for compliance tracking and investigation

    • Alert on critical events such as changes in index retention

    • Fully Integrated with Datadog role-based access control (RBAC)

    When Combined with Other Plans


    • Pivot seamlessly to related metrics, traces, and logs during investigations

    • Correlate security signals and detailed observability data

    Service and Support


    • Technical Support (Chat and Email)

    • Community Forum and Online Docs

    Common Questions


    How does Audit Trail work?
    Audit Trail captures all access and configuration change activity and provides a single view to search and analyze the events. Learn more from our documentation.
    How do I set up Datadog Audit Trail?
    Datadog Audit Trail can be enabled in Organization Settings, in the Audit Trail Settings page. Learn more in our docs.
    How do I ensure confidentiality / access controls for my Audit Trail Events?
    Datadog Audit Trail is fully integrated with Datadog role-based access control (RBAC) so you can easily control which roles and users have access. Read more in our docs.
    Do I need to purchase other Datadog products to use Datadog Audit Trail?
    Yes.
    Is this available in all regions?
    Yes, Datadog Audit Trail is available in all EU- and US- hosted accounts.
    Are there other billing options?
    For more information about billing options, please contact your customer success representative.
    Do you have special offerings for partners?
    We’re always looking to partner with technology and service providers and resellers. See our Partners page for more.

    Serverless Monitoring

    Detect and resolve performance issues in your serverless apps

    Serverless Workload Monitoring


    Starting At

    $ 5
    Per active* function,
    per month**

    Centralized monitoring of serverless apps

    • Detect issues with real-time serverless metrics

    • Identify increases in cold starts or cold start duration

    • Search for functions with custom serverless tags

    • Correlate metrics with recent deployments

    *Average of the hourly number of invoked functions
    **Billed annually or $7.20 on-demand

    Serverless Workload Monitoring


    Starting At

    $ 5
    Per active* step function,
    per month**

    Add deeper visibility into your functions

    • Detect issues in your AWS Step Functions in real time

    • Identify bottlenecks and optimizations in individual states within your step function

    • Correlate metrics with logs, error tracking, and deployment tracking to troubleshoot faster

    *Average of the hourly number of active step functions
    **Billed annually or $7.20 on-demand

    Serverless Workload Monitoring


    Starting At

    $ 3
    Per active* application instance,
    per month**

    Centralized monitoring of Azure Container Apps

    • Detect issues with real-time OOTB and custom metrics

    • Identify increases in cold starts or shutdowns

    • Search for services with custom tags

    • Correlate metrics with audit logs from serverless resources

    • Find bottlenecks or errors for individual requests

    • Trace functions, APIs and queues all in one trace

    • Enrich traces with request and response payloads

    • Visualize requests with out-of-the-box service map

    *Average of the hourly number of app instances
    **Billed annually or $4.32 on-demand

    Serverless Workload Monitoring


    Starting At

    $ 3
    Per active* application instance,
    per month**

    Centralized monitoring of Google Cloud Run

    • Detect issues with real-time OOTB and custom metrics

    • Identify increases in cold starts or shutdowns

    • Search for services with custom tags

    • Correlate metrics with audit logs from serverless resources

    • Find bottlenecks or errors for individual requests

    • Trace functions, APIs and queues all in one trace

    • Enrich traces with request and response payloads

    • Visualize requests with out-of-the-box service map

    *Average of the hourly number of app instances
    **Billed annually or $4.32 on-demand

    Serverless APM


    Starting At

    $ 10
    Per million state transitions*,
    per month**

    Tracing for your workflows

    • Visualize the path of your executions to identify exactly where to begin troubleshooting issues

    • Identify bottlenecks and optimizations in individual states within your step function with execution-level metrics and monitors

    • See input and output payloads on each state transition to reproduce bugs easily

    *Triggered by active workflows. 1 step function state transition is equivalent to 1 step function span.
    **Billed annually or $15 on-demand

    Serverless APM


    Starting At

    $ 10
    Per million traced invocations*,
    per month**

    Add deeper visibility into your active functions

    • Find bottlenecks or errors for individual invocations

    • Trace functions, APIs and queues all in one trace

    • Enrich traces with request and response payloads

    • Visualize requests with out-of-the-box service map

    *Triggered by active functions. 1 traced lambda invocation is equivalent to 1 top level span.
    **Billed annually or $15 on-demand

    Serverless Application Security


    Starting At

    $ 10
    Per million traced invocations*,
    per month**

    Comprehensive threat detection

    • Detect attackers in real time

    • Investigate attacks with distributed tracing and runtime context

    • Build custom detection rules to detect business logic attacks

    • Integrate with existing security stack to respond to attacks

    *Triggered by active functions
    **Billed annually or $15 on-demand

    Features

    • Integrates with AWS CDK, Serverless Framework, SAM, Terraform, and more

    • Out-of-the-box health dashboards for API Gateway, Step Functions, SQS, DynamoDB, and more

    • Optimize function memory use and cold starts with Watchdog Insights

    • Optimize memory and cold starts

    • Available for Lambda functions in all major Lambda runtimes

    • Analyze request and response payloads for each serverless invocation

    • Performance metrics and version comparisons for every release with deployment tracking

    • Automatic APM trace map visualizes end-to-end trajectory for requests and attacks

    • Pivot from failing functions to related commits in GitHub

    • 140+ out-of-the-box rules to detect attacks in real time

    • Out-of-the-box health dashboards for AWS Step Functions

    • Easily understand and optimize bottlenecks Step Functions with an aggregated State Machine Health Map

    • Visualization execution map to identify error-states, inputs, and outputs to easily reproduce issues

    • Correlated logs, metrics, error tracking, and traces for simplified troubleshooting

    • Upstream trace propagation and linked lambda traces for end-to-end trajectory for each request

    • Performance metrics and version comparisons for every release with deployment tracking

    • End-to-end flame graph and waterfall visualizations within APM with the ability to generate trace metrics and monitors

    • Out-of-the-box health dashboards for App Services, Functions, Container Apps, CosmosDB, and more

    • Optimize memory use, cold starts, and shutdowns with Watchdog Insights

    • Available for Container Apps in all major runtimes

    • Performance metrics and version comparisons for every release with deployment tracking

    • Automatic APM trace map visualizes end-to-end trajectory for each request

    • Pivot from failing functions to related commits in GitHub

    • Out-of-the-box health dashboards for Cloud Run, Pubsub, Bigtable, Datastore, and more

    • Optimize service memory use, cold starts, and shutdowns with Watchdog Insights

    • Available for Cloud Run in all major runtimes

    • Performance metrics and version comparisons for every release with deployment tracking

    • Automatic APM trace map visualizes end-to-end trajectory for each request

    • Pivot from failing functions to related commits in GitHub

    Serverless Function Pricing Example

    HOUR 1HOUR 2HOUR 3
    Function A10 invocations0 invocations1M invocations
    Function B1 invocation5M invocations1M invocations
    Function C0 invocations0 invocations1 invocation
    Total Active Functions for Hour2 active functions
    (Function A and B)
    1 active functions
    (Function B)
    3 active functions
    (Function A, B, and C)
    2 + 1 + 3
    3*
    = 2 average active functions for this time period
    = 2 average active functions × $5 = $10

    *denominator for normal month would be the number of hours in that month. For example, in a 30-day month, it would be 720 hours.

    Support Plans


    From basic plans to bespoke offerings, Datadog offers the right level of support for any organization.

    LEARN MORE ABOUT OUR SUPPORT PLANS

    Common Questions

    How do you define an active function?
    Datadog bills based on the average number of functions per hour across the month for your accounts. Every hour, Datadog records the number of functions that were executed one or more times and monitored by your Datadog account. At the end of the month, Datadog charges by calculating the average of the hourly number of functions recorded. For example, if you invoked a function only once during a month, your bill will be 1 function / 720 hours * $5.
    How do you define a traced invocation?
    Datadog creates a top-level Lambda span for every Lambda invocation that is traced. Your bill is based on the sum of AWS Lambda invocations connected to an ingested APM trace in a given month. You will also be billed for the total number of indexed spans submitted to the Datadog APM service exceeding the bundled quantity at the end of the month.
    Can I control how many invocations are traced?
    Yes, Datadog allows you to control the percentage of Lambda function invocations that generate APM data.
    Can Serverless APM be purchased without Serverless Workload Monitoring?
    No, Serverless APM is an optional add-on for serverless functions sending metrics to Datadog via Serverless Workload Monitoring.
    What is allotted with Serverless APM?
    Span Ingestion: 50GB Ingested Spans per 1M traced invocations; then $0.10/GB. Span Retention: 300 thousand Indexed Spans per 1M traced invocations; then $1.70 per 1 million Indexed Spans with 15-day retention (billed annually or $2.55 on-demand). See APM common questions for additional retention periods.
    What AWS Lambda runtimes do you support?
    Python, Node.js, Go, Ruby, Java, and .NET
    Can I monitor other AWS services used alongside my Lambda functions?
    Yes, Datadog has an easy to set up AWS integration which immediately pulls in metrics and more from 85+ AWS services, including Amazon API Gateway, Amazon DynamoDB, AWS AppSync, Amazon SQS, Amazon Kinesis, and AWS Step Functions.
    What security capabilities are available for AWS Lambda?
    Datadog allows you to detect meaningful threats on your applications running on AWS Lambda, and block attacks in your AWS Web Application Firewall (WAF) using Workflow Automation. Learn more about application security with our documentation.
    How do you define an active AWS Step Function?
    Datadog bills based on the average number of AWS Step Functions per hour across the month for your accounts. Every hour, Datadog records the number of Step Functions that were executed one or more times and monitored by your Datadog account. At the end of the month, Datadog charges by calculating the average of the hourly number of AWS Step Functions recorded. For example, if you invoked a function only once during a month, your bill will be 1 function / 720 hours * $5.
    How do you define a span for AWS Step Functions?
    Datadog bills based on the sum of AWS Step Function State transitions connected to an ingested APM trace in a given month. You will also be billed for the total number of indexed spans submitted to the Datadog APM service exceeding the bundled quantity at the end of the month.Any spans that are linked to the Step Function state, such as a Lambda invocation span ,is billed additionally. See AWS lambda pricing for more details.
    Can I control how many invocations are traced?
    Yes, Datadog allows you to control the percentage of AWS Step Function invocations that generate APM data.
    Can Serverless APM be purchased without Serverless Workload Monitoring?
    No, Serverless APM is an optional add-on for serverless functions sending metrics to Datadog via Serverless Workload Monitoring.
    What is allotted with Serverless APM?
    Span Ingestion: 50GB Ingested Spans per 1M traced invocations; then $0.10/GB. Span Retention: 300 thousand Indexed Spans per 1M traced invocations; then $1.70 per 1 million Indexed Spans with 15-day retention (billed annually or $2.55 on-demand). See APM common questions for additional retention periods.
    What if I am sending both AWS Lambda Spans and AWS Step Function Spans?
    AWS Lambda spans will be billed separately from AWS Step Function Spans. However, you can still link traces from AWS Lambda and Step Functions together together to get end-to-end step function execution visibility.
    Can I monitor other Serverless AWS services used alongside my Step Functions?
    Yes, you can monitor AWS Lambda functions with the Datadog Extension to get even deeper visibility into your Serverless workloads. Datadog also has an easy to set up AWS integration which immediately pulls in metrics and more from 85+ AWS services, including Amazon API Gateway, Amazon DynamoDB, AWS AppSync, Amazon SQS, Amazon Kinesis
    How do you define an active application instance?
    Active instances for Azure Container Apps are measured based on the number of unique active Container App Replicas that are monitored within each 5-minute period. To calculate the monthly average, we take the average number over all 5-minute periods in the month.
    Is Tracing included in Container App Monitoring?
    Yes. However, any spans submitted from Azure Container Apps that go over your org’s current allotment will still be billed. Span Ingestion: 50GB Ingested Spans per 1M traced invocations. Span Retention: 300 thousand Indexed Spans per 1M traced invocations. See APM common questions for additional retention periods.
    What metrics are included in Serverless Workload Monitoring?
    Each active application instance includes an allotment of 5 ingested custom metrics and 5 indexed custom metrics.
    Can I control how many requests are traced?
    Yes, you can control the percentage of Container App requests that generate APM data by configuring your tracing settings.
    How does pricing for Azure App Services work?
    Azure App Service Plan instances are metered and treated as hosts for Datadog billing purposes. See Infrastructure Monitoring and Application Performance Monitoring for respective pricing. There is no additional monitoring cost for the individual Web Apps and Function Apps that are running on a given App Service Plan instance, and there is no additional Serverless APM cost for the traced requests and executions that they submit.
    How do you define an active application instance?
    Active instances for Cloud Run are measured based on the number of unique active Cloud Run instances that are monitored within each 5-minute period. To calculate the monthly average, we take the average number over all 5-minute periods in the month.
    Is Tracing included in Container App Monitoring?
    Yes. However, any spans submitted from Cloud Run that go over your org’s current allotment will still be billed. Span Ingestion: 50GB Ingested Spans per 1M traced invocations. Span Retention: 300 thousand Indexed Spans per 1M traced invocations. See APM common questions for additional retention periods.
    Can I control how many requests are traced?
    Yes, you can control the percentage of Cloud Run requests that generate APM data by configuring your tracing settings.

    Workflow Automation

    Automate processes to go from monitoring to taking action

    Starting At

    $ 10
    Per 100 Workflow Executions,
    per month*

    • Build and trigger automated workflows directly from your observability data

    • Get started fast with 40+ pre-built blueprints across DevOps and Security use cases

    • Stay in control of your automation with humans in the loop

    *Billed annually or $14 on-demand


    Multi-Year/Volume discounts available

    Contact Us

    Features

    • Automatically trigger workflows from monitors and security signals, and dashboards

    • Easy-to-use workflow builder with 300+ OOTB actions

    • 40+ pre-built blueprints covering essential processes across security, DevOps, incident management and more

    • Build and customize complex workflows with multi-step automation using logic operators, branching, conditions, iterations and more

    • Enrich workflows with context from alerts and security signals

    • Bring humans into the loop with interactive workflows

    • Granular role-based access control (RBAC) for workflows

    • Keep track of executions with detailed workflow auditing

    Common Questions


    How is an execution defined?
    An execution refers to the start of a series of steps within the workflow. For instance, if a workflow is triggered five times, there will be five executions recorded.
    Do I need to purchase other Datadog products to use Workflow Automation?
    Having all your monitoring and security alerts and insights in one place is something we encourage for comprehensive visibility. You can use Workflow Automation without purchasing any other Datadog products. You have the option to manually trigger your workflows directly from the Workflow console or schedule them to run automatically.
    I am an existing Infrastructure Monitoring customer. Can I add Workflow Automation to my plan?
    Yes, you can add Workflow Automation to your existing plan. Your billing per host won’t be affected, you only be charged per execution of your workflows. Reach out to your Customer Success Manager for further details
    What are Workflow execution limits?
    • Maximum execution time for a workflow: 24 hours
    • Maximum steps in a workflow: 100
    Are there other billing options?
    We can customize billing plans to meet your needs. For a detailed explanation of billing, please reach out to your Customer Success Manager

    Data Streams Monitoring

    Track and improve the performance of your
    streaming data pipelines from end to end

    Starting At

    $ 15
    Per host, per month*

    • Detect slowdowns anywhere in your event-driven applications

    • Localize and resolve pipeline bottlenecks and failures

    • Remediate floods of backed-up messages

    *Billed annually or $18 on-demand

    Features

    • Out-of-the-box pipeline topology mapping

    • Consumer lag and partition metrics

    • End-to-end latency and throughput metrics

    • Recommended monitors

    • Correlated telemetry: traces, logs, and infrastructure metrics

    • Schema tracking

    • Team ownership information

    • Custom dashboards

    • Unlimited users

    Common Questions


    What is Data Streams Monitoring and how does it work?
    Datadog Data Streams Monitoring (DSM) allows you to track and improve the performance of event-driven applications that use Kafka, SQS, and RabbitMQ. DSM automatically maps dependencies between all services and queues, measures latency between them, and provides additional health metrics, such as consumer lag, across your streaming data pipeline to help you monitor it end to end.
    What counts as a billable DSM host?
    A billable Data Streams Monitoring host is a host that has the Datadog Agent installed and producer and consumer services that are running on it and instrumented for DSM. Visit our documentation for additional setup information.
    What kind of billing plan do I need to run Data Streams Monitoring?
    Every billable DSM host requires the purchase of Pro or Enterprise Infrastructure Monitoring, regardless if it is combined with APM. Annual, month-to-month, and on-demand billing plans are available. For a detailed explanation of billing, please see our Billing FAQ.
    Can I purchase Data Streams Monitoring as part of a bundle?
    Yes, Data Streams Monitoring is available bundled with APM as part of APM Pro and Enterprise and enables DSM across your APM fleet.
    What Technologies do you support?
    DSM currently supports Kafka, RabbitMQ, and SQS. For additional queueing technologies, we provide custom instrumentation options.
    How long is DSM data retained for?
    Map history is stored for 30 days and all metrics are retained for 15 months.

    Code Security (IAST)

    Detect real vulnerabilities in your production application’s code and fix them faster with observability context

    Starting At

    $ 20
    Per host,
    per month*

    • Detect vulnerabilities in 1st-party code running in production

    • Eliminate false positives with 100% accuracy in OWASP Benchmark

    • Prioritize vulnerabilities based on threat activity posed in production

    • Fix vulnerabilities faster with source code integration and guided remediation steps

    • Streamline troubleshooting workflows between DevOps and Security teams

    *Billed annually or $29 on-demand

    Common Questions


    What counts as a billable Datadog Code Security host?
    Similar to Datadog APM, a Datadog Code Security host is a host on which Datadog Code Security is enabled and that is actively generating spans that are being submitted to the Datadog SaaS application.
    What kind of billing plan do I need to run Code Security?
    Datadog Code Security is currently only available to customers of Datadog Application Performance Monitoring (APM).
    How does Datadog Code Security work?
    Datadog Code Security uses instrumentation to analyze applications in their running state, monitoring requests and their interactions with each internal layer—operating similarly to Application Performance Monitoring (APM). This instrumentation-based approach is called Interactive Application Security Testing (IAST), which identifies code-level vulnerabilities in applications based solely on application traffic, and does not require any scans or security tests, ensuring that vulnerabilities are identified and addressed as the application runs. Learn more about Datadog Code Security in our documentation.
    What languages does Datadog Code Security support?
    Java, .NET, Node.JS, and Python. Learn more about supported languages in our documentation.
    Do I have to deploy the product across all my APM hosts?
    No. You can flexibly choose on which services Datadog Code Security is enabled.
    Can Datadog Code Security scan my repositories to detect code-level vulnerabilities?
    Yes. Datadog can detect code-level vulnerabilities in your repositories pre-production with a Static Application Security Testing (SAST) approach that ensures your code is secure before deployment. This capability is currently in beta. Supported programming languages include Java, C#, Javascript, and Typescript. Learn more about scanning a repository in our documentation.
    Is Code Security available in all regions?
    Yes.
    Do you have special offerings for partners?
    We’re always looking to partner with technology and service providers and resellers. See our Partners page for more.

    App Builder

    Custom apps that integrate in your monitoring stack to accelerate remediation tasks and reduce errors

    Get in touch

    Custom Quote


    • Build apps using a low code drag-and-drop interface with blueprints and over 550+ out-of-the box actions to handle complex tasks and take action without having to leave Datadog

    request a quote

    Multi-Year/Volume discounts available

    Contact Us

    Features

    • Quickly build production ready internal ops tools without front end code knowledge

    • Drag and drop 14+ UI components and customize your logic using custom JavaScript code.

    • Integrate with a catalog of 550+ out-of-the-box action integration. Maintain the flexibility to interact with any rest API using HTTP requests. Ability to communicate with both cloud and on-prem resources

    • Get value instantly with a library of pre-configured blueprints solving common use cases in DevOps, security, software delivery, project management and more

    • Consolidate all your company’s monitoring data, tool development, and observability response in one place

    • Empower teams with self-serve apps so they can proactively take action before issues arise

    • Save time with minimized context switching by troubleshooting all within the same interface

    • Embed apps into your existing monitoring stack as widgets to Datadog Dashboards

    • Configure viewing and editing permissions of apps with granular role-based access control (RBAC)

    • Gain visibility into every app with audit logging and usage tracking

    Common Questions


    Can I use the product before I commit to it?
    Yes, App Builder is already available in your account and it is free to start using. We will reach out to you about pricing once your apps start having a meaningful amount of query executions.
    How is a query execution defined?
    A query refers to a single action from the Action Catalog being triggered from a user of a published app.
    Why is pricing custom?
    App Builder is a new product so we want to make sure the billing plans meet your needs which is why we are offering custom pricing only at this time. For a detailed explanation of billing, please reach out to your Customer Success Manager.
    Do I need to purchase other Datadog products to use App Builder?
    No, you can use App Builder without purchasing any other Datadog products. Having all your monitoring and security alerts and insights in one place is something we encourage for comprehensive visibility.
    I am an existing Infrastructure Monitoring customer. Can I add App Builder to my plan?
    Yes, you can add App Builder to your existing plan and it will show up on your plan as a different SKU. Reach out to your Customer Success Manager for further details.

    Cloud Cost Management

    Take control of your cloud costs

    Starting At

    $ 7.50
    Per host,
    per month*

    • Break down and allocate your costs at a granular level, down to an individual resource

    • Quickly identify top cost changes and take action on them

    • Empower your Engineering teams to include costs on their application dashboards

    *Billed annually or $10.80 on-demand

    Features

    When Combined with Other Plans


    • Pivot seamlessly to Service Catalog to understand Service performance

    • Unify cost data with observability data to understand cost drivers

    Service and Support


    Common Questions


    How do you define and bill for hosts with CCM?
    A host is any EC2 instance that appears in your AWS cost & usage report, or VM in your Azure/Google cost exports. We use an hourly average across the entire month for metering.
    Do I need to purchase other Datadog products to use Cloud Cost Management?
    Having all your infrastructure, traces, and cost data in one place is something we encourage for comprehensive visibility and contextualization. However, you can use Cloud Cost Management without purchasing other Datadog products.
    Are there other billing options?
    Annual, monthly and hourly plans are available. We can customize billing plans to meet your needs. For a detailed explanation of billing, please see our Billing FAQ.
    Which Cloud Service Providers is this available for?
    Cloud Cost Management is available for AWS, Azure, and Google Cloud, with beta support for other cost integrations.
    Is this available in all regions?
    Yes. Cloud Cost Management is available in all EU- and US-hosted accounts.
    Do you have special offerings for partners?
    We’re always looking to partner with technology and service providers and resellers. See our Partners page for more.
    Does Cloud Costs give visibility into all AWS, Azure, and Google Cloud, products?
    Yes, you will see costs for all resources (including storage, databases, and more) in your bill even though you are only pay for Cloud Cost based on your host count.

    Observability Pipelines

    Aggregate, process, and route log data in your own environment at scale

    Starting At

    $ 0.10
    Per ingested GB
    per month* **

      *Billed per GB of uncompressed data ingested
      **Billed annually or $0.12 on-demand


      Multi-Year/Volume discounts available

      Per vCPU pricing, recommended for volumes above 30TB/month, is also available***

      *** Billed annually per vCPU allocated to Observability Pipelines Worker, or $3.00 per vCPU per hour on-demand

      Contact Us

      Features

      • Predictable pricing and accounts for spike and changes in volume with vCPU pricing

      • Aggregate logs from a variety of sources

      • Make decisions before data leaves your environment

      • Control costs by filtering or sampling noisy or uninteresting logs

      • Reduce the size of events by dropping unnecessary fields

      • Easily dual ship logs to destinations

      • Store logs in an archive of your choosing in a rehydratable format

      • Redact sensitive data with custom rules or with Sensitive Data Scanner library rules

      • Easily scale to petabytes of logs per day

      • Remotely deploy changes to any pipelines running in your infrastructure

      • Monitor the health of all of your telemetry pipelines at scale

      • Identify bottlenecks and verify data delivery in all your pipelines

      Service and Support


      • Technical support (Chat and Email)

      • Community Forum, Robust Open Source Community, and Online Docs

      Common Questions


      How does Observability Pipelines work?
      Observability Pipelines gives the freedom to collect, transform, and route logs in your own environment in order to control costs, reduce lock-in, enhance security, and standardize data. You can learn more about how it works in our documentation.
      Where does Observability Pipelines run?
      Observability Pipelines Worker runs in your own infrastructure. It can be installed anywhere in your infrastructure with a simple configuration and Datadog API key. This allows you to make decisions and control costs before data leaves your environment. To learn more about the setup process, check out our documentation here.
      What are the benefits of the per GB ingest pricing?

      This is suited for organizations with volumes below 30TB/month. It is cost effective at lower volumes and easy to understand, as well as allowing you to pay based on your usage as you scale or ramp up early on.

      However, your bill will increase at a linear rate as your volume increases, so if you are expecting your observability volume to balloon in the near future, the vCPU pricing may work better for your organization.

      What are the benefits of the per vCPU pricing?
      Per vCPU pricing is suited for volumes above 30TB/month, as it scales better especially at high volumes. In addition, the per vCPU pricing gives you predictable pricing year round if you expect frequent spikes or changes to your organization’s volume of observability data. Finally, it allows you to scale your computational resources based on the intensity of the processing required.
      How many vCPUs do I need?

      Sizing and resource provisioning for Observability Pipelines Worker depends on various factors, such as the pipeline configuration and workload. Generally speaking, we recommend provisioning 1 vCPU for every 30TB/month.

      Read our documentation on Capacity Planning and Scaling for additional details.

      What happens if I send an unexpectedly high volume of data?

      Committing to vCPU pricing model allows you to absorb spikes in volume.

      Even if you’re paying based on ingested volume, by committing to a monthly volume of data, you are not rate-limited based on a single day’s volume. Send as much data as you need on any given day without losing visibility. Assuming your average is lower on other days, your bill is unaffected. In those cases where you have a big month, not to worry! You maintain complete visibility and may be subject to overages only on the volumes that exceed your commitment.

      Are there other billing options?
      Annual and monthly plans are available. We can customize billing plans to meet your needs. For a detailed explanation of billing, please see our Billing FAQ.
      Do you have special offerings for partners?
      We’re always looking to partner with technology and service providers and resellers. See our Partner Network page for more.

      Database Monitoring

      Surface slow performing queries and optimize application performance

      Starting At

      $ 70
      Per database host,
      per month*

      • Track normalized query performance trends using database-generated metrics

      • Correlate query performance with database infrastructure metrics

      • Access all of your database insights, database hosts, clusters, and applications

      • Extract valuable data without compromising database security

      *Billed annually or $84 on-demand

      Features

      • In-depth explain plans

      • Out-of-the-box slow query detection

      • 200 normalized queries allotted per host

      • Automatic PII obfuscation from all query data

      • No code instrumentation needed

      • Unlimited user accounts

      • Tag-based query filtering and grouping

      • Access to hundreds of relevant database metrics

      • Total visibility into your Postgres, MySQL, SQL Server, and Oracle databases whether self-hosted or managed

      • Out-of-the-box database list with active connections and in-depth wait event analysis

      When Combined with Other Plans


      • Set triggers to alert teams on abnormal query trends

      • Visualize and easily share insights with key stakeholders via Datadog Screenboards

      • Out of the box support for dashboards, monitors, SLOs and advanced formulas and functions

      Service and Support


      Common Questions


      How do you define a database host?

      A database host is any physical or virtual instance hosting your database on a server that you monitor with Datadog.

      Note: Azure SQL Database deploys a database in an isolated network; each database is treated as a single host.

      What databases are supported?
      Database Monitoring (DBM) is vendor-agnostic. We support Postgres (9.6+), MySQL (5.6+), SQL Server (2012, 2014, 2016, 2017, 2019), and Oracle (11g, 12c, 18c, 19c, 21c) databases at this time, whether they be on-premise, self-managed, or cloud-hosted. In the future, we plan to support additional databases.
      Can I purchase Database Monitoring (DBM) standalone?
      No, you need to be an existing Infrastructure Monitoring customer to purchase Database Monitoring.
      I am an existing Infrastructure Monitoring customer. Can I purchase DBM for a portion of my database hosts?
      Yes, you can purchase Database Monitoring (DBM) for one, some, or all of your database hosts!
      What are (query) explain plans and how are they useful?
      A query explain plan or query execution plan describes the steps used to access data and enables you to locate hotspots. We automatically capture explain plans for all queries to make sure that you have sample available during critical moments.
      How long is DBM data retained?
      – Query metrics are retained for 3 months
      – Explain plans and query samples are retained for 15 days
      How does DBM work?
      DBM uses the Datadog Agent to capture data from your databases. Please see our documentation for more information.
      Does DBM require the use of an additional agent?
      No, as long as you are an Infrastructure Monitoring customer and already have the standard Datadog Agent set up, you are able to use Database Monitoring. Check out our docs page for details.
      What are normalized queries?
      Identical queries with different parameters are grouped together by obfuscating the parameters. These query groups are called normalized queries and are sometimes referred to as query digests. Each database host comes with an allotment of 200 normalized queries. Obfuscating parameters at the agent level also ensures that no sensitive data is forwarded.
      Can I still use DBM if I have additional normalized queries past the allotted amount?
      The 200 normalized queries per host allotment is aggregated across all hosts, meaning that if you have 2 hosts, you have a total limit of 200 + 200 = 400 queries regardless of the exact breakdown by host, i.e. 200 normalized queries on average. At your request, we can accommodate additional normalized queries surpassing this limit for an extra charge.
      Are there other billing options?
      Annual and monthly plans are available. We can customize billing plans to meet your needs. For a detailed explanation of billing, please see our Billing FAQ.

      Data Jobs Monitoring

      Observe, troubleshoot, and cost-optimize your Spark and Databricks jobs across data pipelines

      Starting At

      $ 0.05
      Per host, per hour*

      • Detect problematic Spark and Databricks jobs anywhere in your data pipelines

      • Remediate failed and long-running-jobs faster

      • Optimize overprovisioned compute resources to reduce costs

      *Billed annually or $0.072 on-demand

      Features

      • Health & performance overview of jobs and clusters

      • Alerts for failed & long-running jobs

      • Job run performance trends

      • Job execution traces & metrics

      • Resource utilization metrics (e.g., CPU, memory, disk)

      • Estimated costs of jobs & clusters

      • Custom dashboards

      • Unlimited users

      Common Questions


      How do I set up Data Jobs Monitoring (DJM)?
      Depending on the platform you use to run Apache Spark, follow the installation instructions for Amazon EMR, Databricks, and/or Kubernetes. Learn more about how DJM works from our documentation.
      What is the default retention for DJM data types?
      90 days for job execution traces and 15 months for metrics.
      How is DJM usage calculated and how is it billed?

      Datadog DJM is billed per host, per hour. This uses an average host count per hour, by sampling the number of unique hosts instrumented every five minutes and taking an average of those samples.

      Example: Suppose we observe:
      1:00-1:05 pm: 100 unique DJM hosts
      1:05-1:10 pm: 300 unique DJM hosts
      1:10-1:15 pm: 150 unique DJM hosts
      1:15-1:20 pm: 50 unique DJM hosts
      1:20-2:00 pm (last 8 intervals): 0 unique DJM hosts

      The sum of unique host counts in each five-minute interval for the hour is 100 + 300 + 150 + 50 = 600. Since there are 12 five-minute intervals in one hour, we would then divide this sum by 12 to get the average, leading to 600 / 12 = 50.

      Assume we see this usage pattern once a day for 30 days. This would result in a monthly total of 50 x 30 = 1,500 billable DJM host hours.

      Does using DJM generate usage of other Datadog products?

      DJM job execution traces generate Span Ingestion and Span Indexing usage, which may lead to additional charges beyond the allotted 0.205 GB Ingested Spans & 1,370 Indexed Spans per DJM host, per hour.

      DJM for Spark on Kubernetes (K8s) generates container monitoring usage and there is an allotment of 10 DJM containers per host.

      Enabling Spark log collection (optional) when using DJM is billed via Datadog Log Management.

      Do hosts with DJM also count as Infrastructure hosts?
      No, hosts where DJM is enabled do not require Infrastructure Monitoring and are not billed as Infrastructure hosts.
      Is this available in all regions?
      DJM is available in our AP, EU, and US data centers. It is currently not available in GovCloud (US).

      Error Tracking

      Group and triage error events across web, mobile, and backend applications

      Starting At

      $ 0.25
      Per 1k error events, per month*

      • Automatically group similar errors into issues representing bugs

      • Prioritize the most important issues based on count, recency, or impact

      • Resolve errors faster with custom monitors and one-click pivot into Git and IDEs

      • Investigate anomalistic tags surfaced by Watchdog Insights

      *Error Tracking is included for APM traces and RUM events at no additional cost.
      **Billed annually or $0.36 on-demand

      Features

      • Prioritized list of all errors, automatically grouped into issues

      • Custom alerts on new issues

      • Default and custom tags for simple search and analytics

      • Watchdog Insights: Anomalistic tags associated with specific issues

      • Error distribution over time or by environment, version, URL, and other tags

      • Source code and IDE integrations

      • Ability to mute noisy issues or mark others as open, ignored, or resolved

      • Error triaging in Datadog Case Management and Incident Management

      When Combined with Other Plans


      • Full-stack visibility

      • Seamless correlation with related sessions in RUM and distributed traces in APM

      Service and Support


      • Technical support (chat and email)

      • Community forum and online docs

      Common Questions


      How does Datadog Error Tracking work?
      Error Tracking automatically groups uncaught exceptions found in certain error events (from APM traces, RUM events, and logs) across frontend and backend applications into issues with rich debug context.
      How is Error Tracking billed?

      Only your volume of indexed error logs with certain attributes (e.g., stack traces) are billed for Error Tracking. To learn more about Error Tracking attributes see our docs.

      Note: For indexed logs, see Log Management pricing here.

      Which programming languages does Error Tracking support?
      Browser Errors support JavaScript and TypeScript. Mobile Errors support Native iOS, Native Android, and React Native. Backend Errors support Java, NodeJS, .NET, Python, Ruby, Go, PHP, and C++.
      I’m an existing Datadog APM and/or Real User Monitoring (RUM) customer. Do I need to pay for Error Tracking?
      No. Error Tracking is included for APM traces and RUM events at no additional cost. Error Tracking for Logs requires the Log Management product with indexing.
      Can I filter logs eligible for Error Tracking?
      Yes. You can use Error Tracking Rules to include and exclude certain error logs that are ingested and billed by Error Tracking. We also offer rate limiting capabilities to safeguard against unexpected costs by allowing you to set a budget, ensuring your bill remains predictable and under control. You can also view a rolling 24-hour volume estimate in-app.
      Is this available in all regions?
      Yes. Error Tracking is available in all EU- and US-hosted accounts.
      How can I start using Error Tracking?
      Visit the Error Tracking documentation and get started with formatting your backend or browser and mobile application logs for Error Tracking. Error Tracking can be enabled in-app.

      Cloud SIEM

      Detect security threats with a real-time detection engine and built-in threat intelligence; conduct investigations and threat hunts across 15-months of security data.

      15-months analysis & retention


      Starting At

      $ 5
      Per million events analyzed,
      per month*

      • More than 350, and growing, out-of-the-box detection rules maintained by Datadog’s detection engineering experts

      • Logs are analyzed in real time for detection within seconds

      • Threat hunt and investigate across 15-months of security data using our easy-to-use log search tools

      • Reduce time to insight in complex cloud environments using our graph-based, entity-focused investigation tools

      • Accelerate mean time to response with automation workflows***

      *Cloud SIEM is billed annually or $7.50 on-demand
      **Ingestion starts at $0.10 per ingested or scanned GB, per month
      ***Workflows are billed separately


      Multi-Year/Volume discounts available (1.2B+ events/mo)

      Contact Us

      Features

      • Detect threats in seconds, not minutes or hours

      • Growing library of out-of-the-box integrations for essential security tools

      • Designate all or specific data for analysis through in-app or API security filters

      • Easy-to-use query language and search tools

      • Out-of-the-box detection rules identifying potential malicious behavior

      • Signals are embedded with MITRE ATT&CK® and playbook guidance

      • Dynamic, eye-catching, and customizable dashboards

      • All security log and signal data retained and indexed for 15-months

      • Unlimited user accounts

      • Deployment in minutes

      • Activate bundled security content with out-of-the-box content packs to get started quickly

      • Investigate cloud entities using graph-based visualizations

      • Pivot seamlessly to related metrics, traces, and logs during investigations

      • Collaborate quickly and easily between developers, operations, and security teams using built-in case management and incident management tools

      When Combined with Other Plans


      • Correlate security signals and detailed observability data

      • Accelerate response with Workflow Automation

      Service and Support


      • Easy access to support via chat or email

      • Join active online community forum for discussions and resolutions to questions

      • Access extensive online documentation to expand skills and product knowledge

      • Select from support plans right-sized for your organization

      Common Questions


      Which logs are analyzed by Cloud SIEM?
      Cloud SIEM only analyzes the logs you choose to send to it.
      What detection rules are available out of the box?
      Datadog continuously releases new detection rules, which are automatically enabled for existing customers. To explore Cloud SIEM’s default detection rules, please visit our public docs.
      How are detection rules categorized?
      Rules that detect potential attacker techniques are mapped to the MITRE ATT&CK® framework.
      Can users write their own custom detection rules?
      Yes, Cloud SIEM includes a rule editor that lets users edit default detection rules or write their own. The editor does not require users to learn a proprietary query language. To learn more about Cloud SIEM’s log detection and correlation rules see our documentation here and here.
      Is there an additional cost for writing custom threat detection rules?
      No, Cloud SIEM covers the analysis of ingested logs both by default detection rules, as well as by any user-defined detection rules.
      Is there an additional cost for retaining security signals generated by detection rules?
      No, Cloud SIEM covers the retention of security signals for 15 months.
      Are there other billing options?
      Annual and monthly plans are available. We can customize billing plans to meet your needs. For a detailed explanation of billing, please see our Billing FAQ.