Skip to content

Sensitive Data in HubSpot CRM for Developers

Learn more about storing sensitive data within HubSpot's CRM using Private and Public Apps.

Sensitive data displayed on contact record with screenshot of properties configuration
APPLICABLE PRODUCTS
  • Marketing Hub
    • Enterprise
  • Sales Hub
    • Enterprise
  • Service Hub
    • Enterprise
  • Content Hub
    • Enterprise
  • Operations Hub
    • Enterprise

Sensitive Data in HubSpot

We’ve been working toward supporting the storage of several different types of sensitive data within HubSpot’s CRM while providing privacy and security protections that enable our customers to operate our products in compliance with HIPAA. Learn more below on how to get started using sensitive data in your public and private apps. We encourage you to also visit our Trust Center for resources on storing sensitive data to ensure that you use our products and services in a way that supports your HIPAA obligations.

About Sensitive Data and its functionality

This functionality allows public and private app developers to interact with sensitive data via the following HubSpot APIs:

  • CRM Objects API: Developers can use private and public apps to create, read, update, and delete sensitive data property values on contact, company, deal, ticket, and custom object records.
  • CRM Properties API: Developers can use private and public apps to read custom sensitive data property definitions/schema for contacts, companies, deals, tickets, and custom objects. At this time, creating, updating, and deleting custom sensitive data properties is not supported.
  • Webhooks API: Developers can create propertyChange event type webhook subscriptions for sensitive data properties on contacts, companies, deals, and tickets. 
  • Workflows API: Developers can use private and public apps to create, read, update, and delete workflows that reference or update sensitive data properties. Please note that automation will NOT support any data that is marked highly sensitive.

To limit programmatic access to customers' sensitive data, new scopes have been introduced for public and private apps:

  • crm.objects.contacts.sensitive.read
  • crm.objects.contacts.sensitive.write
  • crm.objects.companies.sensitive.read
  • crm.objects.companies.sensitive.write
  • crm.objects.deals.sensitive.read
  • crm.objects.deals.sensitive.write
  • crm.objects.custom.sensitive.read
  • crm.objects.custom.sensitive.write
  • tickets.sensitive

Learn more about Sensitive Data scopes and how to manage sensitive data on our docs.

What types of data are allowed for Sensitive Data?

Below illustrates a few examples of the types of data that can be stored within sensitive data properties. 

For a full list, please visit the HubSpot Sensitive Data Terms page.

Limited Government-issued identification

This does NOT include Government-issued numbers used to grant access to highly sensitive information for example Social Security Numbers or tax identifiers.

Demographic data

Including but not limited to ethnicity, gender, age, religion and sexual orientation.

Last 4 digits of bank/financial institution account numbers

Full account numbers are NOT included in Permitted Sensitive Data.

Last 4 digits of credit or debit card numbers

Full card numbers and card security codes (CSCs) are NOT included in Permitted Sensitive Data.

How do I get started using Sensitive Data in my app?

For Private Apps

Private App developers will immediately be able to add any of the new scopes listed above to their app's configuration. Visit "Settings > Privacy & Consent" in your account to get started with sensitive data today.

Visit your settings

For Public Apps

To start using Sensitive Data in your Public App, please review the details of our multi-step process that is designed to protect the privacy of customers' sensitive data in 1:many public applications.

Where can I find additional resources on Sensitive Data?

Enabling Sensitive Data in your account and Creating Sensitive Data Properties

In this knowledge base article, you'll learn how to enable sensitive data in your account and how to create sensitive data properties.

Learn more

Access and manage sensitive data

Learn more about enabling sensitive data access in your app, how to manage sensitive data, and view code samples on our API Documentation.

Visit the API Docs

Sensitive Data Legal Terms

The HubSpot Sensitive Data Terms apply to and govern your participation in the HubSpot Sensitive Data Program.

View the terms

Frequently Asked Questions