Is Spotify safe?
Review Spotify security risks.

The following security profile for Spotify includes the basics you’ll need for a vendor risk assessment: security certifications, supply chain details, privacy policy, terms of service, GDPR compliance, and more.

All Security Profiles

Spotify Organization Details

Headquarters

Hosting

Hosting locations

Security Program

Security Certifications

PCI Compliant

HIPAA Compliant

SOC 2 Compliant

GDPR Compliant

ISO 27001 Compliant

FedRamp Compliant

CSA Star Level 1
Compliant

Security Page

Security Portal

Bug Bounty

Vulnerability Disclosure

Terms of Service

https://www.spotify.com/us/legal/

Privacy Policy

https://www.spotify.com/us/legal/privacy-policy/

Status Page

Authentication

Authentication / SSO

Supported Okta Features

Supports SSO

Two-factor authentication via SMS

Two-factor authentication via E-mail

Two-factor authentication via Hardware

Two-factor authentication via Software

Two-factor authentication via TOTP

Two-factor authentication via U2F

OAuth Details

1046568431490-ij1gi5shcp2gtorls09frkc56d4mjbe2.apps.googleusercontent.com - Spotify

E-mail: [email protected]

1046568431490-jb26iu4es3mg9jc71biqt9288igqk4ko.apps.googleusercontent.com - Spotify

E-mail: [email protected]

1046568431490-re7t0jnm30u79v4l8n9m8rr1jn8s6jqp.apps.googleusercontent.com - Spotify

E-mail: [email protected]

Spotify Supply Chain

Fastly
Branch
Salesforce Experience Cloud
q4inc.com
Google Workspace
SendGrid
Amazon Web Services (AWS)
Khoros
Iterable
Salesforce.com
Mailchimp
Atlassian
Loom
Docker
Have I Been Pwned
Facebook
Apple Business Manager
Zapier
Statuspage
Google Analytics
OneTrust
SpeedCurve
Hotjar
Google Tag Manager
Google Cloud
WebDAM
Heroku

Spotify Subdomains

cms.spotify.com
live.spotify.com
upgrade.spotify.com
community.spotify.com
ads.spotify.com
download.spotify.com
mail.spotify.com
gew4-spclient.spotify.com
news.spotify.com
play.spotify.com
help.spotify.com
experimentation.spotify.com
dev.spotify.com
sparta-api.spotify.com
partners.spotify.com
www.hrblog.spotify.com
accounts.spotify.com
gew1-spclient.spotify.com
charts.spotify.com
gue1-dealer.spotify.com
mobile-ap.spotify.com
start.spotify.com
artists.spotify.com
partner.spotify.com
analytics.spotify.com
support.spotify.com
www.noteable.spotify.com
gew1-dealer.spotify.com
developer.spotify.com
links.spotify.com
gue1-spclient.spotify.com
labs.spotify.com
opensource.spotify.com
community-stage.spotify.com
m.spotify.com
spclient.wg.spotify.com
images.spotify.com
guc3-dealer.spotify.com
link.hello.spotify.com
explore.spotify.com
www.canvas.spotify.com
heads-fac.spotify.com
pixel.spotify.com
repository.spotify.com
provider-api.spotify.com
promo.spotify.com
www.newsroom.spotify.com
beta.spotify.com
gae2-spclient.spotify.com
press.spotify.com
api.spotify.com
exp.wg.spotify.com
open.spotify.com
em.spotify.com
pixel-static.spotify.com
dynamicworkplace4wtc.spotify.com
shop.spotify.com
research.spotify.com
investors.spotify.com
tracing.spotify.com
www.spotify.com
heads-fa.spotify.com
docs.spotify.com
feedback.spotify.com
bloodhound.spotify.com
ap.spotify.com
c.spotify.com
wl.spotify.com
testcdn.spotify.com
generic.wg.spotify.com
guc3-spclient.spotify.com
developers.spotify.com
payments.spotify.com
heads-fab.spotify.com
blog.spotify.com
sparta-api-testing.spotify.com

Regain control of SaaS security.

Nudge Security discovers all SaaS accounts ever created by anyone in your org within minutes of starting a free trial. Get a full SaaS inventory today, along with insights and automation to improve your SaaS security posture.

Try it free