Security Overview

Embeddable is a modern data platform that uses a secure connection to query your database directly. Embeddable does not store a copy of your database - your data stays safely and securely in your own database.

  • Certifications: Embeddable is SOC 2 Type II certified.
  • GDPR Compliance: Embeddable is fully GDPR compliant.
  • Data Storage: Embeddable does not copy your database - it runs live queries, with results caching and fine-grained control.
  • Read-Only Access: All connections use read-only transactions - Embeddable never writes to or alters your database.
  • Credential Encryption: SSH or DB credentials are kept strictly private and secured with AES-128 encryption.
  • In-Transit Security: Both queries and results traverse SSL/TLS to guard against eavesdropping and MITM attacks.
  • Deployment Options:
    • Managed Cube: Cloud-hosted, minimal infra on your end, optional cache (this is used by 90%+ of customers). You can choose between our EU and US hosting options.
    • Self-Hosted Cube: You can run Cube Core in your environment for full control over data and cache, or connect directly to Cube Cloud.
    • Cube Cloud: You can also connect directly to your own Cube Cloud service.
  • Cache Options:
    • Basic cache: In-memory cache speeds up performance and protects your database from too much load.
    • Pre-aggregations: Run pre-aggregations for enhanced performance and scalability, with granular control.
  • Logging: We maintain an extensive, centralised logging environment in our production environment which contains information pertaining to security, monitoring, availability, access, and other metrics about the Embeddable services.