Supabase Is SOC2 Compliant (opens in new tab)

(supabase.com)

19 pointsmattruzzi3y ago8 comments

8 comments

swyx3y ago

Vanta seems to be running away with the SOC2 market.

Having used a few of these systems, Vanta is great if you enjoy 1) their sales reps brutally trashing their competition on every pre-sales call and 2) getting inundated with unimportant compliance alerts due to their over-emphasis on compliance automation.

saarons3y ago

Big fans of Vanta over here. Compared to everything else in the market, they were clearly the furthest ahead for our SOC2 needs.

shinkim09143y ago

I do foresee pricing pressure ahead for them as a lot of competitors seem to arising.

anonymousnovice3y ago

Examples of such competitors please? Very much thanks in advance...

ralusek3y ago

Just to be clear, this seems to suggest that Supabase the company/product is SOC compliant, not that any product/service that you build on Supabase is automatically SOC compliant. Is that correct?

atonse3y ago

Yes. If you built a product on top of supabase and your company wanted to get soc2 compliant, it helps that supabase, one of your vendors, is also compliant.

NoPicklez3y ago

It's generally accepted that a SOC2 report of a SaaS provider covers the controls that are the responsibility of the company to manage.

j / k navigate · click thread line to collapse