Secure, out of the box

We check all the boxes so you can focus on what you do best, building your app and serving your customers.

  • SOC 2 Type 2 certified
  • GDPR & CCPA compliant
  • Annual 3rd-party security penetration tests
  • External code audits

Frequently asked questions

Where can I find your compliance resources?

All compliance documentation can be found on our Trust Center.

Is WorkOS GDPR compliant?

Yes, WorkOS is GDPR compliant. Reach out to support@workos.com to request deletion of data.

Can WorkOS sign a HIPAA BAA?

Yes, WorkOS can sign business associate agreements for customers under enterprise plans.

What data do you store?

The data stored by WorkOS is limited to what is sent from the identity providers. For more information, view our Privacy Policy.

Where can I find the list of data subprocessors?

You can navigate to WorkOS Subprocessors to see the most recent list of data subprocessors.

How can I report security issues?

To report security issues, please refer to our Responsible Disclosure page.

Privacy policy

How we handle data and what data we store from identity providers.

Privacy Policy
How WorkOS can secure your app

Learn how adding Single Sign-On to your app makes it more secure.

Learn more