I'm looking for a way to track costs and handle permissions per tenant / project in a saas context. Gonna allow users to execute their own code snippets and hence, I don't want to expose any sensitive API secrets (like the OpenAI API token) either. I'm trying to figure out how this could be mapped to helicone. Is this a single organization (me) issuing a bunch of helicone api tokens per tenanant / project? Or is each project a seat?