Supabase has achieved SOC2 Type 2 and HIPAA compliance, ensuring the security and privacy of users' data. The company underwent a Type 2 audit to verify adherence to SOC2 guidelines annually. For HIPAA compliance, Supabase is now offering a HIPAA add-on for users handling sensitive healthcare data. The transition from SOC2 to HIPAA was smoother due to overlapping controls and streamlined processes. Users interested in building healthcare apps on Supabase can reach out to the team to sign a Business Associate Agreement (BAA).