Last night Datto priced its IPO at $27 per share, the top end of its range that TechCrunch covered last week. The data and security-focused software company had targeted a $24 to $27 per-share IPO price range, meaning that its final per-share value was at the top of its estimates.

The Exchange explores startups, markets and money. Read it every morning on Extra Crunch, or get The Exchange newsletter every Saturday.

The Datto IPO won’t draw lots of attention; its business is somewhat dull, as selling software to managed service providers rarely excites. But, the public offering matters for a different reason: It gives us a fresh lens into today’s IPO market.

That lens is the perspective of slower, more profitable growth. What is that worth?

The value of quickly growing and unprofitable software and cloud companies is well known. Snowflake made a splash earlier this year on the back of huge growth and enormous losses. Investors ate its shares up, pushing its valuation to towering heights. This year we’ve even seen rapid growth and profits valued by public investors in the form of JFrog’s IPO.

But slower growth, software margins and profitability? Datto’s financial picture feels somewhat unique among the IPOs that TechCrunch has covered this year.

It’s a similar bet to the one that Egnyte is making; the enterprise software company crested $100 million ARR last year and announced that it grew by around 22% in the first half of 2020. And, it is profitable on an EBITDA basis. Therefore, the Datto IPO could provide a clue as to whether companies like Egnyte and the rest of the late-stage startup crop should be content to grow more slowly, but with the benefit of actually making money.

Lessons from Datto’s IPO pricing and revenue multiple

Here are the deal’s nuts and bolts:

Facebook has been making a big play to be a go-to partner for small and medium businesses that use the internet to interface with the wider world, and its messaging platform WhatsApp, with some 50 million businesses and 175 million people messaging them (and more than 2 billion users overall) has been a central part of that pitch.

Now, the company is making three big additions to WhatsApp to fill out that proposition.

It’s launching a way to shop for and pay for goods and services in WhatsApp chats; it’s going head to head with the hosting providers of the world with a new product called Facebook Hosting Services to host businesses’ online assets and activity; and — in line with its expanding product range — Facebook said it will finally start to charge companies using WhatsApp for Business.

Facebook announced the news in a short blog post light on details. We have reached out to the company for more information on pricing, availability of the services and whether Facebook will provide hosting itself or work with third parties, and we will update this post as we learn more.

Update: Facebook responded and we are putting the replies below, in-line where it makes sense.

Here is what we know for now:

In-chat Shopping: Companies are already using WhatsApp to present product information and initiate discussions for transactions. One of the more recent developments in that area was the addition of QR codes and the ability to share catalog links in chats, added in July. At the same time, Facebook has been expanding the ways that businesses can display what they are selling on Facebook and Instagram, most recently with the launch in August of Facebook Shop, following a similar product roll out on Instagram before that.

Today’s move sounds like a new way for businesses in turn to use WhatsApp both to link through to those Facebook-native catalogs, as well as other products, and then purchase items, while still staying in the chat.

At the same time, Facebook will be making it possible for merchants to add “buy” buttons in other places that will take shoppers to WhatsApp chats to complete the purchase. “We also want to make it easier for businesses to integrate these features into their existing commerce and customer solutions,” it notes. “This will help many small businesses who have been most impacted in this time.”

Although Facebook is not calling this WhatsApp Pay, it seems that this is the next step ahead for the company’s ambitions to bring payments into the chat flow of its messaging app. That has been a long and winding road for the company, which finally launched WhatsApp Payments, using Facebook Pay, in Brazil, in June of this year only to have it shut down by regulators for failing to meet their requirements. (The plan has been to expand it to India, Indonesia and Mexico next.)

Facebook Hosting Services: These will be available in the coming months, but no specific date to share right now. “We’re sharing our plans now while we work with our partners to make these services available,” the company said in a statement to TechCrunch.

No! This is not about Facebook taking on AWS. Or… not yet at least? The idea here appears that it is specifically aimed at selling hosting services to the kind of SMBs who already use Facebook and WhatsApp messaging, who either already use hosting services for their online assets, whether that be their online stores or other things, or are finding themselves now needing to for the first time, now that business is all about being “online.”

“Today, all businesses using our API are using either an on-premise solution or leverage a solutions provider, both of which require costly servers to maintain,” Facebook said. “With this change, businesses will be able to choose to use Facebook’s own secure hosting infrastructure for free, which helps remove a costly item for every company that wants to use the WhatsApp Business API, including our business service providers, and will help them all save money.” It added that it will share more info about where data will be hosted closer to launch.

This is a very interesting move, since the SMB hosting market is pretty fragmented with a number of companies, including the likes of GoDaddy, DreamHost, HostGator, BlueHost and many others also offering these services. That fragmentation spells opportunity for a huge company like Facebook with a global profile, a burgeoning amount of connections through to other online services for these SMBs and a pretty extensive network of data centers around the world that it has built for itself and can now use to provide services to others — which is, indeed, a pretty strong parallel with how Amazon and AWS have done business.

Facebook already has an “app store” of sorts with partners it works with to provide marketing and related services to businesses using its platform. It looks like it plans to expand this, and will sell the hosting alongside all of that, with the kicker that hosting natively on Facebook will speed up how everything works.

“Providing this option will make it easier for small and medium size businesses to get started, sell products, keep their inventory up to date, and quickly respond to messages they receive – wherever their employees are,” it notes.

Charging tiers: As you would expect, to encourage more adoption, Facebook has not been charging for WhatsApp Business up to now, but it has charged for some WhatsApp business messages — for example when businesses send a boarding pass or e-commerce receipt to a customer over Facebook’s rails. (These prices vary and a list of them is published here.) Now, with more services coming into the mix, and businesses tying their fates more strongly to how well they are performing on Facebook’s platforms, it’s no surprise to see Facebook converting that into a pay to play scenario.

“What we’ve heard over the past couple years is how the conversational nature of business messaging is really valuable to people. So in the future we may look at ways to update how we charge businesses that better reflect how it’s used,” the company told us. Important to note that this will relate to how businesses send messages. “As always, it’s free for people to send a business a message,” Facebook added.

Frustratingly, there seems so far to be no detail on which services will be charged, nor how much, nor when, so this is more of a warning than a new requirement.

“We will charge business customers for some of the services we offer, which will help WhatsApp continue building a business of our own while we provide and expand free end-to-end encrypted text, video and voice calling for more than two billion people,” it notes.

For those who might find that annoying, on the plus side, for those who are concerned about an ever-encroaching data monster, it will, at the least, help WhatsApp and Facebook continue to stick to its age-old commitment to stay away from advertising as a business model.

Doubling-down on SMBs

The new services come at a time when Facebook is doubling down on providing services for businesses, spurred in no small part by the coronavirus pandemic, which has driven physical retailers and others to close their actual doors, shifting their focus to using the internet and mobile services to connect with and sell to customers.

Citing that very trend, last month the company’s COO Sheryl Sandberg announced the Facebook Business Suite, bringing together all of the tools it has been building for companies to better leverage Facebook, Instagram and WhatsApp profiles both to advertise themselves as well as communicate with and sell to customers. And the fact that Sandberg was leading the announcement says something about how Facebook is prioritizing this: it’s striking while the iron is hot with companies using its platform, but it sees/hopes that business services can a key way to diversify its business model while also helping buffer it — since many businesses building Pages may also advertise.

Facebook has also been building more functionality across Facebook and Instagram specifically aimed at helping power users and businesses leverage the two in a more efficient way. Adding in more tools to WhatsApp is the natural progression of all of this.

To be sure, as we pointed out earlier this year, even while there is a lot of very informal use of WhatsApp by businesses all around the world, WhatsApp Business remains a fairly small product, most popular in India and Brazil. Facebook launching more tools for how to use it will potentially drive more business not just in those markets but help the company convert more businesses to using it in other places, too.

Smaller businesses have been on Facebook’s radar for a while now. Even before the pandemic hit, in many cases retailers or restaurants do not have websites of their own, opting for a Facebook Page or Instagram Profile as their URL and primary online interface with the world; and even when they do have standalone sites, they are more likely to update people and spread the word about what they are doing on social media than via their own URLs.

Facebook’s also made a video to help demonstrate how it sees these WhatsApp Business in action, which you can here:

Customer experience and digital transformation are two terms we’ve been hearing about for years, but have often remained nebulous in many organizations — something to aspire to perhaps, but not take completely seriously. Yet the pandemic has been a forcing event for both concepts, thrusting the ideas front and center.

Suddenly startups that help with either of these concepts are seeing rising demand, even in a year with an overall difficult economic climate. If you are fortunate enough to be helping companies digitize a process or improve how customers interact with companies, you may be seeing increased interest from customers and potential acquirers (and this was true even before this year). A case in point is Twilio acquiring Segment for $3.2 billion recently to help build data-fueled applications to interact with customers.

Even though building a positive customer experience has never been completely about digital, at a time where it’s difficult to interact with customers in person, the digital side of it has taken new urgency. As COVID-19 took hold this year, businesses, large and small, suddenly realized the only way to connect to their customers was digitally. At that point, digital transformation became customer experience’s buddy when other ways of contacting one another have been severely limited.

Pandemic brings changes

Just about every startup founder I talk to these days, along with bigger, more established companies, talk about how the pandemic has pushed companies to digitally transform much faster than they would have without COVID.

Brent Leary, founder at CRM Essentials, says that the pandemic has certainly expedited the need to bring these two big ideas together and created opportunities as that happens. “The coronavirus, as terrible as it has been in so many ways to so many people, has created opportunities for companies to build direct-to-consumer (D2C) digital pipelines that can make them stronger companies despite the current hardships,” Leary told TechCrunch.

The cloud plays a big role in the digital transformation process, and for the last decade, we have seen companies make a slow but steady shift to the cloud. When you have a situation like we’ve had with the coronavirus, it speeds everything up. As it turns out, being in the cloud helps you move faster because you don’t have to worry about all of the overhead of running a business critical application as the SaaS vendors take care of all that for you.

While certifications for security management practices like SOC 2 and ISO 27001 have been around for a while, the number of companies that now request that their software vendors go through (and pass) the audits to be in compliance with these continues to increase. For a lot of companies, that’s a harrowing process, so it’s maybe no surprise that we are also seeing an increase in startups that aim to make this process easier. Earlier this month, Strike Graph, which helps automate security audits, announced its $3.9 million round, and today, Secureframe, which also helps businesses get and maintain their SOC 2 and ISO 27001 certifications, is announcing a $4.5 million round.

Secureframe’s round was co-led by Base10 Partners and Google’s AI-focused Gradient Ventures fund. BoxGroup, Village Global, Soma Capital, Liquid2, Chapter One, Worklife Ventures and Backend Capital participated. Current customers include Stream, Hasura and Benepass.

Image Credits: Secureframe

Shrav Mehta, the company’s co-founder and CEO, spent time at a number of different companies, but he tells me the idea for Secureframe was mostly born during his time at direct-mail service Lob.

“When I was at Lob, we dealt with a lot of issues around security and compliance because we were sometimes dealing with very sensitive data, and we’d hop on calls with customers, had to complete thousand-line security questionnaires, do exhaustive security reviews, and this was a lot for a startup of our size at the time. But it’s just what our customers needed. So I started to see that pain,” Mehta said.

Secureframe co-founder and CEO Shrav Mehta

After stints at Pilot and Scale AI after he left Lob in 2017 — and informally helping other companies manage the certification process — he co-founded Secureframe together with the company’s CTO, Natasja Nielsen.

“Because Secureframe is basically adding a lot of automation with our software — and making the process so much simpler and easier — we’re able to bring the cost down to a point where this is something that a lot more companies can afford,” Mehta explained. “This is something that everyone can get in place from day one, and not really have to worry that, ‘hey, this is going to take all of our time, it’s going to take a year, it’s going to cost a lot of money.’ […] We’re trying to solve that problem to make it super easy for every organization to be secure from day one.”

The main idea here is to make the arcane certification process more transparent and streamline the process by automating many of the more labor-intensive tasks of getting ready for an audit (and it’s virtually always the pre-audit process that takes up most of the time). Secureframe does so by integrating with the most-often used cloud and SaaS tools (it currently connects to about 25 services) and pulling in data from them to check up on your security posture.

“It feels a lot like a QuickBooks or TurboTax-like experience, where we’ll essentially ask you to enter basic details about your business. We try to autofill as much of it as possible from third-party sources — then we ask you to connect up all the integrations your business uses,” Mehta explained.

The company plans to use much of the new funding to staff up and build out these integrations. Over time, it will also add support for other certifications like PCI, HITRUST and HIPAA.