Compliance and certifications
Basedash is SOC 2 Type II compliant, demonstrating our commitment to maintaining the highest standards of security, availability, and confidentiality. This independent audit validates our security controls and processes. You can request our latest SOC 2 report by emailing us at support@basedash.com. All Basedash servers are located in San Francisco, California, ensuring your data remains within secure, well-regulated infrastructure. For customers using non-SQL data sources, the dedicated data warehouses we provision are also hosted in the same San Francisco location.Self-hosting for enhanced security
For organizations with additional security requirements, we offer self-hosting as an option. Self-hosting allows you to deploy Basedash on your own infrastructure, giving you complete control over data location, network security, and compliance standards. Self-hosting is the recommended deployment path for organizations with HIPAA, GDPR, PCI-DSS, air-gapped, or strict data residency requirements that cannot be met by the managed cloud product alone. When you self-host, you control the infrastructure, network boundary, retention policies, subprocessors, and operational controls required for your own compliance program. See our self-hosting documentation for detailed information about compliance standards and implementation requirements. We work with third-party security researchers to conduct regular penetration testing, ensuring our security measures remain robust against evolving threats.Connecting your data
Basedash offers two primary methods for connecting your data, each designed with security as a top priority. For SQL databases, Basedash connects directly to your database and can use read-only credentials when you only want analysis and dashboards. Teams that want editing workflows can enable them with database credentials that have the appropriate write permissions. For databases within private networks, Basedash supports SSH connections for direct database access. This allows you to securely connect to databases that aren’t directly accessible from the internet by routing the connection through an SSH tunnel. To set this up, whitelist the Basedash IP address:24.199.77.73.
For non-SQL data sources, we use Fivetran as a syncing mechanism to replicate your data into a secure data warehouse. This gives you a warehouse containing a copy of your data that you control—you can connect other tools to it or manage the data outside of Basedash as needed.