Skip to content
Gatsby Events Logo Gatsby Events Logo Gatsby Events

Suggestions

Guest Lists Registration Links Email Configuration
Log in
Overview
Account & Settings

Security & SSO

Gatsby is SOC 2 Type II certified with enterprise SSO options. Centralize authentication through Okta, require two-factor authentication, and access compliance documentation for security reviews.

SOC 2 Type II Certified

Independent audit confirms security controls.

Request our report for your compliance review.

Enterprise SSO Ready

Okta integration for centralized authentication.

Provision and deprovision users through your identity provider.

Flexible Authentication

Google SSO, magic links, or username/password.

Match your team's security requirements with optional two-factor.

Enterprise Security You Can Document

Section titled “Enterprise Security You Can Document”

You’re filling out a 50-page security questionnaire. Procurement asks if your event platform is compliant. Legal wants to know where guest data lives. IT needs to verify SSO integration.

If you can’t answer quickly, the deal stalls in review for months.

Gatsby is built for teams that have to prove their security posture. SOC 2 Type II certification. Okta SSO. Enforceable 2FA. When your security team asks questions, you have documentation to send them.

This page covers authentication options, compliance certification, and how to request the materials your organization needs.

Authentication Options

Section titled “Authentication Options”

Different teams have different security stacks. Some organizations mandate Okta. Others live in Google Workspace. Some need the flexibility to add 2FA to standard logins.

Gatsby supports all three approaches.

Okta SSO

Section titled “Okta SSO”

Centralize Gatsby access through your Okta tenant.

Users sign in once. Access is controlled through your identity provider. Offboarding happens automatically when you remove someone from Okta.

What's Supported
  • SP-initiated SSO: Start from the Gatsby login page, authenticate through Okta
  • IdP-initiated SSO: Start from your Okta app dashboard, land directly in Gatsby
  • Automatic provisioning: Users added in Okta gain Gatsby access
  • Automatic deprovisioning: Users removed in Okta lose Gatsby access

Requirements

Before you begin, confirm you have:

  • Access to an Okta tenant
  • Okta administrator privileges
  • Admin access to your Gatsby organization

Setup Steps

  1. In Okta, navigate to Applications and click Browse App Catalog.

  2. Search for “Gatsby” and click Add Integration.

  3. Complete General Settings for your organization.

  4. In Gatsby, open Team Settings and find the Okta Configuration section.

  5. From Okta’s Sign On tab, copy the Client ID and Client Secret into the corresponding Gatsby fields.

  6. For the Issuer URL, click the dropdown in Okta’s top right corner and copy the Authorization Server URL.

  7. Click Save to complete configuration.

How Users Sign In

Once configured, users can sign in three ways:

From Okta

Click the Gatsby app tile in your Okta dashboard.

From Gatsby Login Page

Click “Login with Okta” on the standard Gatsby login page.

Direct Okta Login

Navigate directly to gatsby.events/oktaLogin for Okta-only authentication.

Okta app catalog showing Gatsby application
Find Gatsby in the Okta app catalog to begin setup
Section titled “Google SSO and Magic Links”

For teams without enterprise SSO requirements, Gatsby offers Google SSO and passwordless magic link login.

Google SSO
  • Click Login with Gmail on the Gatsby login page
  • Select your Google account
  • Optionally grant email sending permissions during login
  • Your Google account handles authentication security

Magic Link
  • Click Login with Magic Link on the login page
  • Enter your email address
  • Check your inbox for a secure login link
  • Click to sign in without a password

Standard Login

Username and password authentication at gatsby.events/login.

Can be combined with two-factor authentication for additional security.

Two-Factor Authentication

Section titled “Two-Factor Authentication”

Add an extra layer of security to username/password logins. You can enable 2FA for yourself or require it organization-wide.

Set Up 2FA for Your Account

  1. Click your initials in the top right corner.

  2. Select Settings.

  3. Click Configure 2FA.

  4. Scan the QR code with your authenticator app (Google Authenticator, Authy, 1Password, or similar).

  5. Enter the code from your authenticator to verify setup.

Require 2FA for Your Organization

Admins can enforce 2FA for all team members.

  1. Navigate to Team Settings.

  2. Toggle Require Two Factor Authentication to on.

  3. All team members will be prompted to set up 2FA on their next login.

When 2FA Doesn't Apply

Gatsby’s 2FA only applies to username/password logins.

  • Google logins use Google’s own security (including their 2FA if enabled)
  • Okta logins use Okta’s security policies
  • Magic link logins verify identity through email access
Configure 2FA in your account settings

SOC 2 Type II Certification

Section titled “SOC 2 Type II Certification”

Your vendor review cycle can take months. Security questionnaires run 50+ pages. Legal wants independent verification, not marketing claims.

A tool without SOC 2 certification often isn’t even in the conversation.

Gatsby is SOC 2 Type II certified. An independent auditor evaluates our security controls annually and verifies we maintain the safeguards your organization expects.

What SOC 2 Type II Means
  • Independent third-party audit: Not a self-assessment. An accredited firm verifies our controls.
  • Type II verification: Ongoing assessment over time, not a single point-in-time check.
  • Five trust principles covered: Security, availability, processing integrity, confidentiality, and privacy.
  • Annual renewal: Continuous assessment maintains certification year over year.

What the Certification Covers

Security

Data protected against unauthorized access through encryption and access controls.

Availability

Redundant infrastructure and disaster recovery for reliable uptime.

Processing Integrity

Guest data, RSVPs, and event information processed accurately.

Confidentiality

Guest lists and private event details protected from unauthorized disclosure.

Privacy

Personal information handled in compliance with privacy laws and policies.

Requesting the SOC 2 Report

Contact Gatsby directly through Slack or email. We’ll provide the report for your security review or compliance documentation.

Reports are available for qualified organizations under NDA.

Common Questions

Section titled “Common Questions”

Is Gatsby SOC 2 certified?

Yes. Gatsby is SOC 2 Type II certified. Contact us directly for a copy of the report for your compliance review.

What SSO options do you support?

Okta for enterprise SSO. Google SSO for teams in Google Workspace. Magic link for passwordless login. Username/password with optional 2FA is also available.

Is Okta your only enterprise SSO option?

Currently, yes. Okta is our enterprise SSO integration. Google SSO is available for teams using Google Workspace. Contact us if you have specific SSO requirements.

Does Okta SSO cost extra?

Yes. The Okta integration carries an additional cost. Contact us for pricing details.

Is 2FA required?

Not by default. Individual users can enable it for their own account. Admins can require it organization-wide in Team Settings.

What happens if I lose access to my authenticator?

Contact Gatsby support. We can help you regain access and reset your 2FA configuration.

Can I require everyone on my team to use Okta?

Once Okta is configured, users can sign in through Okta. Contact us about enforcing Okta-only authentication for your organization.

Do you have a security questionnaire we can use?

Contact us directly. We can provide our SOC 2 report and answer specific questions for your security review process.

Gatsby Events logo The event workspace for relationship-driven teams.
SOC 2 · Type II

Product

Features Playbooks Example Events Pricing Integrations

Resources

Get Support Troubleshooting Status Security API
© 2026 Gatsby Labs, Inc.
Privacy Policy Terms of Service
LinkedIn GitHub

By submitting, you agree to Gatsby's privacy policy.

Get Support

For customers

Search this site first. Most answers are right here.

Still stuck? Email us at:

Email copied to clipboard

Office Hours

Every Tuesday at 2pm EST. Drop in with questions. No agenda.

Join Office Hours

For guests

Having trouble with your invitation or registration? Email us and include the event name. We'll sort it out.

Email copied to clipboard

Who answers

Support is handled by the same team that builds Gatsby. Not a help desk. Not a queue. Real people who know the product.