Twilio Acquires Stytch for Agent Identity
Stytch
This deal shows that agent identity is becoming a core infrastructure layer, not a niche security add on. Stytch gives Twilio a way to help software companies turn their apps into delegated access systems, where a human can let an agent read data, take limited actions, and trigger approval flows, with logs and revocation built in. That fits the shift from apps used only through their own UI to apps accessed through Claude, ChatGPT, and MCP clients.
-
Stytch was already moving beyond login screens. Its Connected Apps product lets a customer app become its own OAuth 2.0 identity provider, so an app can issue scoped permissions to outside software or AI agents instead of forcing every action through the app itself.
-
The closest precedent is Auth0, which won by helping developers support a new interface wave across web and mobile. Stytch framed agents as the next interface wave, and positioned itself against Auth0, Clerk, and WorkOS as the broad identity and risk layer rather than a point tool for UI components or SSO only.
-
What Twilio is buying is also a pricing and expansion engine. Stytch charges consumer apps by active users, B2B apps by enterprise connections, and has started counting active agents like users on invoices, which creates a direct way to monetize rising agent traffic instead of treating it as background load.
The next step is identity moving into every agent driven workflow. As more software companies expose MCP servers and delegated actions, the winning platform will be the one that handles consent, scopes, fraud checks, and human confirmation in one layer. Twilio is positioning to make that layer part of its broader customer engagement stack.