MCP compliance catalog

Every MCP tool in the SCOPE compliance index, grouped by server — risk posture, regulatory exposure, and the tools that warrant tighter governance.
80MCP servers
1695tools
Reset 80 of 80 servers
Intuit QuickBooks
51 tools · footprint 188
15 critical 10 high 17 med 9 low COSOGLBA+3 more
PayPal
33 tools · footprint 86
6 critical 7 high 9 med 11 low COSOGLBA+3 more
Stripe
26 tools · footprint 77
3 critical 7 high 10 med 6 low COSOPCI+2 more
PostHog
36 tools · footprint 69
6 high 22 med 8 low
Supabase
32 tools · footprint 69
4 critical 4 high 8 med 16 low COSOSOX
Salesforce
32 tools · footprint 60
4 critical 2 high 9 med 17 low COSOSOX
Close
64 tools · footprint 59
5 high 22 med 37 low COSOSOX
Cloudflare
26 tools · footprint 58
3 critical 4 high 6 med 13 low
Webflow
23 tools · footprint 57
2 critical 5 high 10 med 6 low
PagerDuty
64 tools · footprint 55
5 high 16 med 43 low
Box
37 tools · footprint 50
10 high 14 med 13 low COSOHIPAA+1 more
Gusto
36 tools · footprint 48
12 high 11 med 13 low COSOGLBA+1 more
ActiveCampaign
58 tools · footprint 47
4 high 15 med 39 low COSOSOX
Sanity
36 tools · footprint 47
1 critical 5 high 12 med 18 low
Amplitude
43 tools · footprint 44
6 high 16 med 21 low
Sentry
25 tools · footprint 43
3 high 14 med 8 low
‹ PrevPage 1 of 5Next ›
NotionDocs ↗
8 med 10 low · 18 tools · 0 SoD-flagged
regimes APPICCPAGDPRISO_27001LGPDPIPEDAPIPLPOPIASOC2UK_GDPR

Tools needing tighter control (0 of 18)

None — every tool is low-risk, high-confidence, and outside PCI/HIPAA payload scope.
All other tools (18)
notion.notion-create-comment low conf highallow
Posts a comment on a page or block under the authenticated user's identity.
notion.notion-create-database low conf highallow
Creates a new database with a defined schema.
notion.notion-create-pages low conf highallow
Creates one or more pages in the workspace.
notion.notion-create-view low conf highallow
Adds a new view to a database; presentation-layer change.
notion.notion-duplicate-page low conf highallow
Creates a copy of an existing page; may duplicate sensitive content into a new location.
notion.notion-fetch medium conf highaudit
Retrieves the full content of a page, database, or block by URL or id.
notion.notion-get-comments low conf highallow
Reads comments on pages or blocks; may contain user-generated PII.
notion.notion-get-self low conf highallow
Reads the authenticated bot/user's own profile.
notion.notion-get-teams low conf highallow
Reads team / teamspace membership in the workspace.
notion.notion-get-user low conf highallow
Reads a single user record including name and email.
notion.notion-get-users medium conf highaudit
Reads workspace user list including names and emails.
notion.notion-move-pages medium conf mediumaudit
Relocates pages within the workspace tree; can change visibility/inheritance.
notion.notion-query-data-sources medium conf highaudit
Runs filtered queries against database content; can return rows containing PII.
notion.notion-query-database-view medium conf highaudit
Returns rows visible through a specific database view.
notion.notion-search medium conf highaudit
Searches across pages, databases, and other workspace content; can surface confidential material.
notion.notion-update-data-source medium conf mediumaudit
Modifies database/data-source schema; can break dependent views and integrations.
notion.notion-update-page medium conf highaudit
Edits page properties or content; can overwrite knowledge-base material.
notion.notion-update-view low conf highallow
Edits an existing database view's filters or columns.