An SF B2B SaaS · $80K → $620K ARR.

The archetype represents a pattern we ship into reliably in San Francisco: a B2B productivity or developer-tooling SaaS operating from SoMa, Mission, or Hayes Valley, $80K-$200K ARR, founder-led with one or two engineers, product-market fit signal but no enterprise readiness. Pre-engagement state: $80K ARR, single-tenant Supabase backend, basic email-password auth, Stripe Checkout for self-serve, no SSO, no SOC 2, no admin dashboard, no observability beyond Sentry. The first three enterprise prospects had asked for SOC 2 and SSO and walked when neither existed.

Three structural problems compounded the revenue ceiling. One, no SOC 2 Type II — every enterprise security review (an estimated $50K+ ACV opportunity each) ended in "come back when you have SOC 2." Two, no SSO meant every team account had to invite users one-by-one via email-password — an unacceptable workflow for any 100-seat enterprise customer. Three, the activation flow lost 72 percent of free signups before the first valuable action; PLG metrics were broken because the onboarding never matched the marketing promise.

Workstream 1 · SOC 2 Type II readiness. Audit-log architecture, RBAC primitives, encryption-at-rest, vulnerability scanning, incident-response runbooks. Deployed Vanta for continuous-compliance evidence collection. Type II audit window ran weeks 18-30; report shipped week 32. Unlocked the first 4 enterprise contracts inside 6 months of report.

Workstream 2 · SSO + RBAC + team accounts. Migrated auth from email-password to Clerk with SAML / OIDC support for Okta + Google Workspace + Azure AD. Team-account model with workspace-level role permissions (admin, member, viewer). Custom domain-claiming flow for enterprise customers.

Workstream 3 · Activation flow rebuild. PLG onboarding rebuilt from scratch: signup, single-question intent capture, 3-step interactive product tour, first-valuable-action trigger inside 4 minutes. PostHog activation funnel instrumentation. Free-to-paid activation rate moved from 28 percent to 61 percent over 4 months.

Workstream 4 · Admin dashboard + support tooling. Internal admin built for support team to impersonate users, view org billing, force password reset, audit-trail every action. Connected to Intercom for inline ticket context. Logo churn dropped from 5 percent to 2.1 percent monthly as support resolution time fell from 14 hours to 2.

Workstream 5 · Expansion-pricing tier + sales-led motion. Built an expansion-pricing tier (per-seat for >10 seats, usage-based for high-volume API) layered on top of existing self-serve plan. Sales-led pipeline 4x'd over 6 months as the first 10 enterprise customers expanded. NRR moved to 118 percent.

The pattern this archetype represents (SF B2B SaaS in productivity, developer tooling, or vertical workflow, $80K-$300K ARR, founder-led, post-PMF but pre-enterprise-readiness, with the first 3-5 enterprise prospects asking for SOC 2 + SSO and walking) is one of our most-shipped engagement shapes in San Francisco. The 26-week timeline holds steady; the workstreams compress or expand in the same proportions; the metrics typically land within plus or minus 25 percent of the archetype numbers.

Five capabilities transfer directly: SOC 2 Type II readiness with Vanta or Drata, SSO + RBAC + team accounts with Clerk + WorkOS, PLG onboarding rebuild with PostHog instrumentation, internal admin + support tooling, and expansion-pricing tier launch with Stripe Billing usage metering. Every SF engagement starts with a 30-minute discovery call. Pacific Time, same-day response Monday to Friday 9 to 6.