Is SpotOn safe?
Review SpotOn security risks.

The following security profile for SpotOn includes the basics you’ll need for a vendor risk assessment: security certifications, supply chain details, privacy policy, terms of service, GDPR compliance, and more.
SpotOn Organization Details

Category

Finance

Organization Details

What is SpotOn?

SpotOn's POS Systems are designed to fit the needs of your Restaurant, Retail, or Enterprise business. One-stop POS platform to grow & scale your business.

Headquarters

Hosting

Hosting locations

Security Program

Security Certifications

SOC2 Compliance
PCI Compliant
HIPAA Compliant
SOC2 Compliance
SOC 2 Compliant
GDPR Compliant
ISO 27001 Compliant
FedRamp Compliant
CSA Star Level 1
Compliant

Security Page

Security Portal

Bug Bounty

Vulnerability Disclosure

Terms of Service

Privacy Policy

Authentication

Authentication / SSO

Supported Okta Features
Login with Google support
Login with Microsoft support
Supports SSO
Two-factor authentication via SMS
Two-factor authentication via E-mail
Two-factor authentication via Hardware
Two-factor authentication via Software
Two-factor authentication via TOTP
Two-factor authentication via U2F

OAuth Details

SpotOn Supply Chain
  • Microsoft Azure
  • Cloudflare
  • Seismic
  • Netlify
  • Zscaler
  • HubSpot
  • LaunchNotes
  • WP Engine
  • Vercel
  • Proofpoint
  • Zendesk
  • MongoDB
  • Miro
  • Google Analytics
  • DocuSign
  • Docker
  • Apple Business Manager
  • FullStory
  • Segment
  • Chili Piper
  • Okta
  • Refined
  • Site24x7
  • Heap
  • Hotjar
  • Akamai
  • SendGrid
  • Opensense
  • ReadMe
  • Unbounce
  • Statuspage
  • Skilljar
  • Zoho
  • Salesforce.com
  • Sonatype
  • ZoomInfo
  • LiveAgent
  • Google Tag Manager
SpotOn Subdomains
  • qa-egiftcard-apipy.spoton.com
  • enterprise.spoton.com
  • paypal-disputes-webhook.spoton.com
  • prs.spoton.com
  • qa-retail-orders-web.spoton.com
  • qa-fis-webhook-receiver.spoton.com
  • qa-marketing-admin-bff.spoton.com
  • order.spoton.com
  • qa-gmb-web.spoton.com
  • campaign-bff.spoton.com
  • qa-capital.spoton.com
  • qa-gmb-service.spoton.com
  • retail-sales-web.spoton.com
  • poynt-webhook-receiver.spoton.com
  • form-builder-service.spoton.com
  • tracking.spoton.com
  • api.spoton.com
  • try.spoton.com
  • customers-bff.spoton.com
  • dashboard.spoton.com
  • qa-maas-admin.spoton.com
  • qa-deals.spoton.com
  • colorado.spoton.com
  • www.spoton.com
  • restaurantrefunds-qa.spoton.com
  • qa-omni-shipping-service.spoton.com
  • task-scheduler.spoton.com
  • thespot.spoton.com
  • knowledge.spoton.com
  • qa-growth-service.spoton.com
  • qa-deal-bff.spoton.com
  • pennsbury-station2.website.spoton.com
  • nmi-webhook.spoton.com
  • qa-virtual-terminal.spoton.com
  • swag.spoton.com
  • l.spoton.com
  • ql.spoton.com
  • smart.spoton.com
  • new.spoton.com
  • updates.spoton.com
  • optout.spoton.com
  • receipt-service.spoton.com
  • gmb-web.spoton.com
  • deal-bff.spoton.com
  • poynt-webhook.spoton.com
  • qa-captive-portal-api.spoton.com
  • payments-staging.spoton.com
  • qa-invoicing-service.spoton.com
  • landing.spoton.com
  • virtual-terminal.spoton.com
  • info.spoton.com
  • qa-spoton-plus.spoton.com
  • merchant-signup.spoton.com
  • retail-orders-web.spoton.com
  • dli-test.spoton.com
  • hub.spoton.com
  • gmb-service.spoton.com
  • signup.spoton.com
  • qa-vt-web-test-root-config.spoton.com
  • spoton-plus.spoton.com
  • growth-service.spoton.com
  • qa-auth-service.spoton.com
  • messaging.spoton.com
  • restaurantreports-mqa.spoton.com
  • qa-websitedemo-api.spoton.com
  • qa-prs.spoton.com
  • qa-websites-static.cdn.spoton.com
  • restaurantreports-preprod.spoton.com
  • tahoe-fire-dancers.website.spoton.com
  • qa-ecommerce-api.spoton.com
  • captive-portal.spoton.com
  • status.spoton.com
  • spoton-prod-omnichannel-tenant-assets-pub.cdn.spoton.com
  • qa-messaging.spoton.com
  • captive-portal-api.spoton.com
  • qa-websitedemo.spoton.com
  • maas-admin.spoton.com
  • egiftcard-apipy.spoton.com
  • payments.spoton.com
  • omni-shipping-service.spoton.com
  • websites-user-assets.cdn.spoton.com
  • qa-form-builder-service.spoton.com
  • academy.spoton.com
  • fs-websites.cdn.spoton.com
  • cryan-assoc-inc2.website.spoton.com
  • mobile.spoton.com
  • feedback.spoton.com
  • restaurantreports-qa2.spoton.com
  • marketing-merchant-service.spoton.com
  • websites-static.cdn.spoton.com
  • fallback-origin.spoton.com
  • login.spoton.com
  • content.spoton.com
  • auth-service.spoton.com
  • dashboard-saasquatch-backend.spoton.com
  • qa-campaign-bff.spoton.com
  • deals.spoton.com
  • blog.spoton.com
  • ecommerce-api.spoton.com
  • qa-retail-sales-web.spoton.com
  • omnichannel-gateway.spoton.com

Regain control of SaaS security.

Nudge Security discovers all SaaS accounts ever created by anyone in your org within minutes of starting a free trial. Get a full SaaS inventory today, along with insights and automation to improve your SaaS security posture.

was able to find all this and much more.
Nudge was able to find all this and much more.
Nudge Security provides detailed security profiles for thousands of SaaS apps. Sail through security assessments with our proprietary intelligence on vendors’ security, risk, and compliance programs.
Stop chasing down answers. Start a free 14-day trial of Nudge Security to learn:
Stop chasing down answers.
Start a free 14-day trial of Nudge Security today.
Who’s using SpotOn in your org?
What data does SpotOn have access to?
What is SpotOn’s breach history?
What apps are in SpotOn’s supply chain?