Compliance and GDPR

  • Updated

ClickUp's utmost priority is your security and privacy. We're leading the industry with our privacy standards, ensuring that your data is never used for third party profit or distribution of any kind. 

Additionally, we employ some of the leading security experts, researchers, and cyber security firms to ensure our systems and databases adhere to the highest possible quality standards.

Read more about our latest security and compliance features on this page: 

Does ClickUp use Encryption at Rest? 

Absolutely, all data is held at the utmost security standards including encryption in transit as well as at rest. 

Is ClickUp EU-GDPR compliant?

Absolutely. As of April 4, 2018, ClickUp released an update that ensures full compliance for the new GDPR regulation. This means you can fully export your data as well as request to delete all data for your team. 

Note that deleting your data is a permanent action and cannot be reverted. 

Is ClickUp HIPAA Compliant? 

Yep! But if you need a BAA agreement, you'll need to upgrade to the Enterprise plan. Due to the regulatory and legal cost, BAA agreements are only issued for Enterprise users.

Is ClickUp SOC 2 compliant?

Indeed! We have achieved audit certification for Service Organization Controls (SOC 2) Trust Services Principles, focused on security. Our continued SOC 2 certification ensures our organizational and technical controls are independently audited at least annually. Please contact for ClickUp's latest report.

Was this article helpful?