Rate Limits
FavForm applies rate limits to protect against abuse and ensure fair usage.
API rate limits
API requests are limited based on your subscription plan:
| Plan | Requests/minute | Requests/day |
|---|---|---|
| Free | 60 | 1,000 |
| Pro | 300 | 10,000 |
| Business | 1,000 | 100,000 |
Submission rate limits
Form and poll submissions are rate-limited per IP address to prevent spam:
| Plan | Default limit | Customizable |
|---|---|---|
| Free | 10 per minute per IP | No |
| Pro | 10 per minute per IP | Yes (1-100) |
| Business | 10 per minute per IP | Yes (1-1000) |
Custom rate limits
Pro and Business users can customize submission rate limits per form:
- Open your form in the builder
- Go to Settings → Security
- Adjust "Rate limit per IP"
- Save changes
Lower limits provide better spam protection. Higher limits are useful for high-traffic forms or when multiple users share an IP (e.g., office networks).
Rate limit headers
API responses include rate limit information in headers:
Text
X-RateLimit-Limit: 60
X-RateLimit-Remaining: 45
X-RateLimit-Reset: 1706140800X-RateLimit-LimitMaximum requests allowed in the window
X-RateLimit-RemainingRequests remaining in current window
X-RateLimit-ResetUnix timestamp when the window resets
Handling rate limit errors
When rate limited, the API returns a 429 status code:
JSON
{
"error": "Rate limit exceeded",
"retry_after": 60
}Best practices for handling rate limits:
- Implement exponential backoff
- Cache responses when possible
- Batch requests where supported
- Monitor your usage via the dashboard