Advanced

Claude Enterprise

Claude Enterprise is Anthropic's contract-based tier for organisations with compliance, security, and governance requirements. It adds SSO, audit logging, data retention controls, and HIPAA eligibility on top of the Teams feature set.

What Enterprise Adds

Identity & Access

SSO: SAML 2.0 / OIDC integration with identity providers (Okta, Microsoft Azure AD, Google Workspace, etc.)
SCIM provisioning: Automatic user provisioning and deprovisioning via your IdP
Role-based access: Granular admin, manager, and member roles
Domain restriction: Limit access to users with your company email domain

Audit & Visibility

Audit logs: Timestamped record of every conversation — who interacted with Claude, when, on what model, and what was generated
Usage analytics: Per-user, per-Project, per-model breakdown of token usage
Export: Logs exportable for SIEM integration or compliance archival

Data Controls

Zero-retention option: Conversations are not stored or used for model training
Custom data retention periods: Set how long conversation data is retained
Data Processing Agreement (DPA): Contractual assurances for EU/GDPR requirements
Data residency: Options for data to remain within specific geographic regions

Capacity & SLAs

Expanded context windows (up to 200K tokens as standard)
Higher rate limits vs Teams/Pro
Dedicated support and customer success manager
Uptime SLAs with financial backing
Priority access to new model releases

Compliance Posture

Anthropic publishes its compliance certifications. As of 2025–2026:

SOC 2 Type II: Independently audited controls for security, availability, and confidentiality. A copy of the report is available to Enterprise customers under NDA.
HIPAA eligibility: Anthropic will sign a Business Associate Agreement (BAA) with Enterprise customers who require HIPAA compliance for healthcare data. Requires zero-retention configuration.
GDPR: Data Processing Agreement available. Covers lawful basis for processing, data subject rights, and sub-processor transparency.
ISO 27001: Anthropic is in the process of achieving ISO 27001 certification (check current status with your Anthropic account team).

Always verify current compliance status

Compliance certifications and their scope change. Before making compliance commitments to your customers or regulators based on Claude Enterprise, verify the current status directly with Anthropic. Request the most recent SOC 2 report and confirm the scope of any BAA.

SSO Setup Overview

SSO configuration in Claude Enterprise follows the standard SAML 2.0 / OIDC flow:

Your Anthropic account team provides the SP (Service Provider) metadata / entity ID and ACS URL
Configure your IdP (Okta, Azure AD, Google, etc.) with these values and create a new SAML app
Copy the IdP metadata URL or certificate back to the Claude Enterprise admin console
Test SSO login with a pilot user before enabling for all users
Enable SCIM provisioning for automatic user lifecycle management (optional but recommended)

When Enterprise Is Required

Teams suffices for most small professional teams. Enterprise is required when your organisation has:

A security policy requiring SSO for all SaaS tools
Audit obligations (SOX, HIPAA, FedRAMP-adjacent) that require conversation logs
Legal/privacy obligations requiring zero-retention or data residency
GDPR obligations requiring a signed DPA with AI vendors
>100 users (at this scale, Teams pricing often becomes less efficient than Enterprise custom pricing)

Checklist: Do You Understand This?

Enterprise adds SSO (SAML/OIDC), SCIM provisioning, audit logs, data retention controls, and compliance agreements
HIPAA eligibility requires a BAA with Anthropic and zero-retention configuration
SOC 2 Type II report is available to Enterprise customers under NDA
Always verify current certification scope directly with Anthropic before making compliance commitments
Enterprise is needed when SSO, audit logs, zero-retention, DPA/GDPR, or HIPAA are organisational requirements