Supabase is now officially compliant with both SOC2 Type 2 and HIPAA standards.
SOC2 Type 2 certification, obtained on May 22nd, demonstrates compliance over time and requires annual audits.
HIPAA compliance allows customers to build healthcare applications on Supabase, with added security for patient data.
Transitioning from SOC2 to HIPAA compliance was streamlined, utilizing the same auditor and mapping existing controls.
Supabase has updated various internal processes and policies, including incident management, to meet the stringent requirements of HIPAA.

Supabase is an open source platform providing developers with tools to quickly build and scale applications. It serves as an alternative to Firebase, offering a range of features including a full Postgres database, authentication services, instant APIs, Edge Functions, real-time data subscriptions, storage solutions, and vector embeddings for machine learning models. Supabase emphasizes developer experience with easy setup, maintenance-free scaling, and immediate API generation from database schemas. It supports various user authentication methods, allows for custom security policies, and fosters a community-oriented ecosystem. It is tailored for both rapid prototyping and large-scale production deployments.

Supabase

Supabase provides scalable open source backend services with Postgres database.

APIs for multiplayer experiences

Supabase Achieves HIPAA and SOC2 Type 2 Compliance

Recent Certification News