Security And Privacy

DataFetch is hosted on Google Cloud Platform. All data centers are located in the United States.

Individuals are able to create a DataFetch account using Slack or Microsoft Teams. DataFetch accounts are bound to Slack and Microsoft Teams user accounts.

DataFetch exclusively sends data over HTTPS transport layer security (TLS) encrypted connections for additional security as data transits to and from the application. All data on DataFetch servers is encrypted at rest. Google Cloud Platform stores and manages data cryptography keys in its redundant and globally distributed Key Management Service (KMS). DataFetch has complete control over access to the KMS and has restricted access within the organization.

DataFetch does not download or store records, reports, files, documents, etc. on DataFetch servers. Once a result is sent to the user, DataFetch automatically purges any related information from their servers. We only store the information about user actions within DataFetch (e.g. performs a search). For more information about data we collect, refer to our Privacy Policy.

DataFetch stores information about your account, the applications that you connect to DataFetch, searches, and other actions you perform. For example, we store an action when you perform a search and click on a result. We don't store the contents of the record or query that you viewed or sent, but we do know the source of the data. For more information about the information we store, please refer to our Privacy Policy.

No. All data stays within DataFetch systems and is not sold to 3rd parties. We do not intend to ever sell your data to 3rd parties.

DataFetch prefers to use industry standard OAuth 2.0 to connect your data sources. Depending on the data source you connect, that platform may ask you to enter your password to verify your identity. This is purely for security purposes and DataFetch does not receive your password from these applications. Some types of data sources do not use OAuth for authentication. In these scenarios, credentials may need to be collected and stored by DataFetch. In these cases, DataFetch stores credentials within Google Secret Manager.

When you remove a data source from DataFetch, we automatically remove the backend information from our systems. This is typically done within 1-3 minutes of you removing the data source. If you want to re-connect the application, DataFetch requires you to create a new data source from scratch.

DataFetch is hosted on Google Cloud Platform. Google Cloud Platform undergoes various third-party independent audits regularly and can provide verification of compliance controls for its data centers, infrastructure, and operations. This includes, but is not limited to, SSAE 18-compliant SOC 2 certification and ISO 27001 certification.

DataFetch takes privacy seriously. We retain the minimum amount of data necessary to operate our product offering. Further details can be found in our Privacy Policy.

For details about the terms in place for using DataFetch please visit our Terms Of Service page.

If you have more questions or concerns about security and data, please reach out to security@datafetch.io. We love talking about this stuff!