Problem statement
Where is a tenant’s data being processed?
Solution
The data of an Auth0 customer’s tenant is located in the region of their selection (US, EU, or AU) and will always remain stored in that region. Data will not be transferred out for storage in any other region. The only exception to this rule is the aggregate telemetry data for the tenant that is stored in the EU for the purposes of measuring usage metrics, service performance, and billing. Data may also be processed from different global locations for support purposes. Access is typically required only in connection with Auth0’s provision of the Support Program and then only when necessary to resolve an issue. Auth0/Okta’s Data Processing Addendum can be found at the following website and has been updated to account for the changes required by UK law.