Hacker News new | ask | show | jobs
by ralusek 1398 days ago
Just to be clear, this seems to suggest that Supabase the company/product is SOC compliant, not that any product/service that you build on Supabase is automatically SOC compliant. Is that correct?
2 comments
atonse 1397 days ago
Yes. If you built a product on top of supabase and your company wanted to get soc2 compliant, it helps that supabase, one of your vendors, is also compliant.
link
NoPicklez 1398 days ago
It's generally accepted that a SOC2 report of a SaaS provider covers the controls that are the responsibility of the company to manage.
link