Skip to main content



Coupa Success Portal

Coupa GovCloud and ITAR Compliance

GovCloud and ITAR

Coupa is committed to partnering with United States federal, state, local government agencies, customers, and contractors to deliver savings so urgently needed in the sector.

As part of managing a comprehensive ITAR (International Traffic in Arms Regulation) compliance program, companies subject to ITAR regulations must have control of unintended exports by restricting access to protected data to US Persons and restricting the physical location of that data within the USA.  Coupa GovCloud provides an environment physically located in the US and where access by Coupa Personnel is limited to US Persons, thereby allowing qualified companies to transmit, process, and store protected articles and data subject to ITAR restrictions.  This environment has been audited by an independent third-party to validate that proper controls are in place.

Self-Serve Audit Reports and Certifications

Coupa customers can download compliance reports, certifications, and security and compliance related documentation, including whitepapers and datasheets on-demand from the Security and Compliance page on the Coupa Support Portal.

Other interested parties in Coupa compliance reports and certifications can access these reports through the Coupa Compliance Reports Self-Serve Portal.


  • Was this article helpful?