---
title: Tenant Settings
description: "Configure tenant-wide settings, activate high-risk AI compliance, and manage API keys."
---

This page details how to configure and manage tenant-wide settings within PromptEasy.eu.

---

## Accessing Tenant Settings

Only users with the **Superadmin** role can access the Plan & Settings page and manage settings.

To access your settings:
1. Navigate to **Plan & Settings** in the main menu.
2. Select the **Settings** tab.

---

## Tenant Settings Configuration

A company superadmin can configure the following tenant-wide options:

- **Single User Account**: Toggle individual or multi-user access. Individual accounts can be transformed to multi-user accounts, but multi-user accounts cannot be changed back to individual.
- **AI Enabled**: Toggle the AI Consultant feature to assist with prompt creation and keyword generation.
- **Suggestion Auto-approve**: When enabled, all suggestions from users are automatically approved and become the new official version of the prompt, bypassing the need for moderator approval.
- **Items Per Page**: Set the default number of items (prompts, users, etc.) to display on list pages.
- **High-risk AI**: Toggle logging of cryptographic vault receipts for templates and executions to meet Article 12 high-risk AI compliance requirements.

---

## Activating High-risk AI Compliance

The **High-risk AI** compliance framework enables Premium and Enterprise organizations to record secure, mathematical, tamper-proof audit trails (Vault Receipts) for AI template interactions.

To activate this functionality, the company superadmin must:
1. Navigate to the **[Agreements & Compliance](https://prompteasy.eu/dashboard/agreements.md)** page and sign the latest version of the **AI Act Cooperation Addendum (AACA)**.
2. Go to the **Plan & Settings** page under the **Settings** tab, locate the **High-risk AI** switch, and toggle it on.

---

## API Key Management (Enterprise Only)

Organizations on an **Enterprise** plan can generate and manage tenant-level gateway API keys (`X-API-KEY`) directly from the Settings tab.

### Features
- **Machine-to-Machine Integration**: Enables your external backends and services to securely query and fetch your organization's prompt library.
- **Secure Hashing**: All generated API keys are cryptographically hashed using SHA-256 before being stored in the database. Plaintext keys are never stored at rest.
- **Key Generation & Revocation**:
  - Superadmins can generate new keys by specifying the service name. The plaintext key is displayed **only once** upon generation and must be copied immediately.
  - Existing keys can be revoked at any time. Once revoked, external applications using that key will immediately lose API access.