Compliance and certifications
Basedash is SOC 2 Type II compliant, demonstrating our commitment to maintaining the highest standards of security, availability, and confidentiality. This independent audit validates our security controls and processes. You can request our latest SOC 2 report by emailing us at support@basedash.com. All Basedash servers are located in San Francisco, California, ensuring your data remains within secure, well-regulated infrastructure. For customers using non-SQL data sources, the dedicated data warehouses we provision are also hosted in the same San Francisco location.Self-hosting for enhanced security
For organizations with additional security requirements, we offer self-hosting as an option. Self-hosting allows you to deploy Basedash on your own infrastructure, giving you complete control over data location, network security, and compliance standards. When you self-host, you can achieve compliance with various international and industry-specific security standards including ISO 27001, SOC 2 Type II, HIPAA, GDPR, PCI-DSS, and air-gapped environments. See our self-hosting documentation for detailed information about compliance standards and implementation requirements. We work with third-party security researchers to conduct regular penetration testing, ensuring our security measures remain robust against evolving threats.Connecting your data
Basedash offers two primary methods for connecting your data, each designed with security as a top priority. For SQL databases, Basedash connects directly to your database and only requires read access to your data sources. This means you can connect using read-only database credentials, ensuring that Basedash cannot modify, delete, or write any data to your databases. We simply form a connection and query your database directly when you need data. For databases within private networks, Basedash supports SSH connections for direct database access. This allows you to securely connect to databases that aren’t directly accessible from the internet by routing the connection through an SSH tunnel. To set this up, whitelist the Basedash IP address:24.199.77.73
.
For non-SQL data sources, we use Fivetran as a syncing mechanism to replicate your data into a secure data warehouse. This gives you a warehouse containing a copy of your data that you control—you can connect other tools to it or manage the data outside of Basedash as needed.