Authentication identity
Record the agreed user ID, email, providers and relevant profile fields without exposing credentials or session tokens in the case pack.
Supabase DSAR · Pilot mapping
A user may appear in Supabase Auth, application tables, Storage metadata and connected tools. Trace’s proposed pilot converts those relationships into a controlled retrieval plan and a case pack ready for human review.
Schema before search
Supabase Auth uses the project’s Postgres database, but customer application data is modelled separately. A defensible search follows validated keys and relationships across only the sources in scope.
Record the agreed user ID, email, providers and relevant profile fields without exposing credentials or session tokens in the case pack.
Map foreign keys, denormalised emails, tenant membership and custom identifiers to reviewed read-only queries.
Identify buckets and object paths linked to the requester. Treat database metadata and underlying file retrieval as separate evidence steps.
Document functions, webhooks or pipelines that may copy user data into billing, support or analytics systems.
Distinguish a person’s own data from company or third-party records in shared workspaces.
Flag retention, third-party rights, unreadable exports and missing relationships for authorised review.
Proposed retrieval plan
Deletion needs a different runbook. Removing an Auth user does not prove that linked rows, files or downstream copies were addressed. Trace does not claim automated deletion.
Official product references: Supabase Auth architecture, Storage schema and database connection methods. Legal reference: Article 15 GDPR.
Least privilege is designed
A powerful credential may be convenient, but convenience is not the access policy. Early pilots should start with the narrowest method that can produce the agreed evidence.
The customer executes validated queries or exports and transfers only the agreed evidence through the accepted channel.
If direct access is necessary, permissions, network path, secrets handling, logs, revocation and retention must be documented first.
No generic schema assumptions
The implementation begins with source mapping because every customer’s tables, policies and downstream systems differ.
A controlled first request
Trace will assess schema, access, reviewer capacity and operational fit before an early-access pilot is accepted.