Organization settings

Data Processing Addendum (DPA)

All organizations can access and use our DPA as part of their GDPR compliance. This is only to access the document. Please ignore this if you have sent the signed document to us.

Please review these details and add data specific to user processing where required. Sign and return the signed DPA document to privacy@supabase.com for the document to be considered executed.

Transfer Impact Assessment (TIA)

All organizations can access and use our TIA as part of their GDPR-compliant data transfer process.

SOC2 Type 2

Organizations on Team Plan or above have access to our most recent SOC2 Type 2 report.

You need additional permissions to access our SOC2 Type 2 report

Contact your organization owner or administrator for assistance.

HIPAA

This is only for HIPAA requests. Please ignore this if you already have HIPAA enabled.

Organizations on the Team Plan or above are eligible for a paid HIPAA compliance add-on. You can submit a request here and we will get back to you on the pricing and process for your use case.

Organizations on the Free or Pro Plan can also submit a request for HIPAA. Note that you are still required to upgrade to the Team Plan after your request is approved.

Standard Security Questionnaire

Organizations on Team Plan or above have access to our standard security questionnaire.

You need additional permissions to access our security questionnaire

Contact your organization owner or administrator for assistance.

Submit a support request if you require additional documents for financial or tax reasons, such as a W-9 form.

Supabase