Product
Overview
What's Metabase?

Help everyone explore and learn from data—no SQL required.

Platform Data Sources Icon Data Sources Security Icon Security
Use Cases Self-Service Analytics Icon
Self-service Analytics

Business intelligence for everyone

Interactive Dashboards Icon
Interactive Dashboards

Share insights with anyone, anywhere

Embedded Analytics Icon
Embedded Analytics

Create seamless in-product analytics

Metabase Plans Small Teams Icon
Starter and Open Source

Self-service BI in 5 minutes

Growing Businesses Icon
Pro

Advanced tools and controls

Enterprise Icon
Enterprise

White glove treatment

Watch 6-minute demo

to see how to set up and publish a dashboard

Dashboard Image
Documentation
Resources
Learn Icon
Learn

Guides on working with data

Blog Icon
Blog

News, updates and ideas

Customers Icon
Customers

Real companies, real data, real stories

Discussion Icon
Discussion

Share and connect with other users

Partners Icon
Metabase Experts

Find an expert partner

Community Stories Icon
Community Stories

Practical advice from our community

Recent Blog Posts
Resources Image
Automating growth and customer insights in SaaS businesses
Why full-app embedding?
Bus factor of top GitHub projects
Why Metabase Cloud?
Halloween Edition: Data Horror stories in startups
Pricing
Log in Get started
Overview What's Metabase? Watch 6-minute demo Use Cases Self-Service Analytics Icon
Self-service Analytics

Business intelligence for everyone

Interactive Dashboards Icon
Interactive Dashboards

Share insights with anyone, anywhere

Embedded Analytics Icon
Embedded Analytics

Create seamless in-product analytics

Metabase Plans Enterprise Icon Enterprise Growing Businesses Icon Pro Small Teams Icon Starter and Open Source Platform Data Sources Icon Data Sources Security Icon Security
Documentation
Learn Icon Learn Blog Icon Blog Customers Icon Customers Discussion Icon Discussion Partners Icon Partners Community Stories Icon Community Stories
Pricing Log in

Hosting Privacy Policy

Effective Date: June 1, 2020

SCOPE

This Privacy Policy applies to personal information that Metabase, Inc. (“Metabase,” “we,” “us,” and “our”) collects about our customers, Authorized Users, and potential customers via our website, our applications, our Subscription Services, and our related online and offline offerings (collectively, the “Services”).

Capitalized terms not defined in this Privacy Policy will have the meaning set forth in our Subscription Services Agreement.

>An Important Note. This Privacy Policy does not apply to or govern our processing of Customer Business Data which is the data on our customer’s external databases that our customers retrieve or access in the course of using the Services. Our customers’ respective privacy policies will govern the collection and use of Customer Business Data. Metabase’s processing of Customer Business Data is governed by the Subscription Services Agreement we have entered into with our customer.

PERSONAL INFORMATION WE COLLECT

We may collect the following categories of personal information:

Information You Provide to Us

Account Information. When you create an account, we collect information such as your name and email address. We may also collect professional details such as the name of your company or employer and other relevant information.

Your Communications with Us. We collect personal information from you such as email address, phone number, or mailing address when you request information about our Services, register for our newsletter, or otherwise communicate with us.

Surveys. We may contact you to participate in surveys. If you decide to participate, you may be asked to provide certain information which may include personal information.

Interactive Features. We may offer interactive features such as collaboration tools, forums, blogs, chat and messaging services, and social media pages. We and others who use our Services may collect the information you submit or make available through these interactive features. Any content you provide on the public sections of these features will be considered “public” and is not subject to the privacy protections referenced herein.

Customer Service and Support. If you call or otherwise interact with Metabase’s customer service and support, we may collect the information you provide to our representatives.

Conferences, Trade Shows, and Other Events. We may attend conferences, trade shows, and other events where we collect personal information from individuals who interact with or express an interest in Metabase and/or the Services. If you provide us with any information at one of these events, we will use it for the purposes for which it was collected.

Business Development and Strategic Partnerships. We may collect personal information from individuals and third parties to assess and pursue potential business opportunities.

Information Collected Automatically

Customer Application Data and Metadata. We may collect Customer Application Data which is data input into the Subscription Services by our customers and their Authorized Users which may include, without limitation, queries submitted by Authorized Users. We may also collect Customer Metadata that describes the Customer Data. Customer Metadata may include data such as the number of datasets in a database, the average data size of a dataset, what database software a user connects to or Metabase-generated descriptions of a given dataset.

Automatic Data Collection. We may collect certain information automatically when you use the Services. This information may include your Internet protocol (IP) address, user settings, MAC address, cookie identifiers, mobile carrier, mobile advertising and other unique identifiers, details about your browser, operating system or device, location information (including inferred location based off of your IP address), Internet service provider, pages that you visit before, during and after using the Services, information about the links you click, information about how you interact with the Services, including the frequency and duration of your activities, and other information about how you use the Services. Information we collect may be associated with accounts and other devices.

Cookies, Pixel Tags/Web Beacons, and Analytics Information. We, as well as third parties that provide content, advertising, or other functionality on the Services, may use cookies, pixel tags, local storage, and other technologies (“Technologies”) to automatically collect information through the Services. Technologies are essentially small data files placed on your device that allow us and our partners to record certain pieces of information whenever you visit or interact with our Services.

  • Cookies. Cookies are small text files placed in device browsers to store their preferences. Most browsers allow you to block and delete cookies. However, if you do that, the Services may not work properly.
  • Pixel Tags/Web Beacons. A pixel tag (also known as a web beacon) is a piece of code embedded in the Services that collects information about engagement on the Services. The use of a pixel tag allows us to record, for example, that a user has visited a particular web page or clicked on a particular advertisement. We may also include web beacons in e-mails to understand whether messages have been opened, acted on, or forwarded.
  • Analytics. We may also use Google Analytics and other service providers to collect and process analytics information on our Services. For more information about Google Analytics, please visit www.google.com/policies/privacy/partners/. You can opt out of Google’s collection and processing of data generated by your use of the Services by going to http://tools.google.com/dlpage/gaoptout.

Information from Other Sources

Our Customers. If you are an Authorized User that uses our Services on behalf of our customer (e.g., your employer), our customer may provide us with information about you so that we can provision your account.

Third Party Services and Organizations. We may obtain information about you from other sources, including through third party services and organizations. For example, if you access our Services through a third-party application, such as a third-party login service, we may collect information about you from that third-party that you have made available via your privacy settings.

HOW WE USE YOUR INFORMATION

We use your personal information for a variety of business purposes, including:

To Provide the Services or Information Requested, such as:

  • Fulfilling our contract with you or the customer on whose behalf you use the Services;
  • Managing your information;
  • Responding to questions, comments, and other requests;
  • Providing access to certain areas, functionalities, and features of our Services; and
  • Answering requests for customer or technical support.

Administrative Purposes, such as:

  • Pursuing legitimate interests, such as direct marketing, research and development (including marketing research), network and information security, and fraud prevention;
  • Measuring interest and engagement in our Services;
  • Improving our products and Services;
  • Developing new products and services;
  • Ensuring internal quality control and safety;
  • Authenticating and verifying individual identities;
  • Carrying out audits;
  • Communicating with you about your account, activities on our Services and Privacy Policy changes;
  • Preventing and prosecuting potentially prohibited or illegal activities;
  • Enforcing our agreements; and
  • Complying with our legal obligations.

Marketing Our Products and Services. We may use personal information to tailor and provide you with content and advertisements. We may provide you with these materials as permitted by applicable law.

If you have any questions about our marketing practices or if you would like to opt out of the use of your personal information for marketing purposes, you may contact us at any time as set forth below.

Consent. We may use personal information for other purposes that are clearly disclosed to you at the time you provide personal information or with your consent.

De-identified and Aggregated Information Use. We may use personal information and other data about you to create de-identified and/or aggregated information, such as de-identified demographic information, de-identified location information, information about the device from which you access our Services, or other analyses we create. De-identified and/or aggregated information is not personal information, and we may use and disclose such information in a number of ways, including research, internal analysis, analytics, and any other legally permissible purposes.

How We Use Automatic Collection Technologies. We, as well as third parties that provide content, advertising, or other functionality on the Services, may use cookies, pixel tags, local storage, and other technologies to automatically collect information through the Services. Our uses of these Technologies fall into the following general categories:

  • Operationally Necessary. This includes Technologies that allow you access to our Services, applications, and tools that are required to identify irregular site behavior, prevent fraudulent activity and improve security or that allow you to make use of our functionality;
  • Performance Related. We may use Technologies to assess the performance of our Services, including as part of our analytic practices to help us understand how our visitors use the Services;
  • Functionality Related. We may use Technologies that allow us to offer you enhanced functionality when accessing or using our Services. This may include identifying you when you sign into our Services or keeping track of your specified preferences, interests, or past items viewed;
  • Advertising or Targeting Related. We may use first party or third-party Technologies to deliver content, including ads relevant to your interests, on our Services or on third party sites.

DISCLOSING YOUR INFORMATION TO THIRD PARTIES

We may share your personal information with the following categories of third parties:

Our Customers.In cases where you are an Authorized User that uses our Services on behalf of our customer (e.g., your employer), our customer may access information associated with your use of the Services including usage and other data.

Please note that your information may also be subject to our customer’s Privacy Policy. We are not responsible for the privacy or security practices of our customers.

Service Providers.We may share any personal information we collect about you with our third-party service providers. The categories of service providers to whom we entrust personal information include service providers for: (i) the provision of the Services; (ii) the provision of information, products, and other services you have requested; (iii) marketing and advertising; (iv) payment and transaction processing; (v) customer service activities; and (vi) the provision of IT and related services.

Affiliates.We may share personal information with our affiliated entities.

APIs and Software Development Kits.We may use third party APIs and software development kits (“SDKs”) as part of the functionality of our Services. APIs and SDKs may allow third parties to collect your personal information in order to provide content that is more relevant to you. For more information about our use of APIs and SDKs, please contact us as set forth below.

Disclosures to Protect Us or Others. We may access, preserve, and disclose any information we store in association with you to external parties if we, in good faith, believe doing so is required or appropriate to: (i) comply with law enforcement or national security requests and legal process, such as a court order or subpoena; (ii) protect your, our, or others’ rights, property, or safety; (iii) enforce our policies or contracts; (iv) collect amounts owed to us; or (v) assist with an investigation and prosecution of suspected or actual illegal activity.

Disclosure in the Event of Merger, Sale, or Other Asset Transfer.If we are involved in a merger, acquisition, financing due diligence, reorganization, bankruptcy, receivership, purchase or sale of assets, or transition of service to another provider, then your information may be sold or transferred as part of such a transaction, as permitted by law and/or contract.

INTERNATIONAL DATA TRANSFERS

All information processed by us may be transferred, processed, and stored anywhere in the world, including but not limited to, the United States or other countries, which may have data protection laws that are different from the laws where you live. We endeavor to safeguard your information consistent with the requirements of applicable laws.

YOUR CHOICES

General.You may have the right to object to or opt out of certain uses of your personal information.

Email Communications. If you receive an unwanted email from us, you can use the unsubscribe link found at the bottom of the email to opt out of receiving future emails. Note that you will continue to receive transaction-related emails regarding products or Services you have requested. We may also send you certain non-promotional communications regarding us and our Services, and you will not be able to opt out of those communications (e.g., communications regarding the Services or updates to this Privacy Policy).

“Do Not Track”. Do Not Track (“DNT”) is a privacy preference that users can set in certain web browsers. Please note that we do not respond to or honor DNT signals or similar mechanisms transmitted by web browsers.

YOUR PRIVACY RIGHTS

For purposes of the California Consumer Privacy Act, we do not “sell” your personal information.

In accordance with applicable law, you may have the right to: (i) request confirmation of whether we are processing your personal information; (ii) obtain access to or a copy of your personal information; (iii) receive an electronic copy of personal information that you have provided to us, or ask us to send that information to another company (the “right of data portability”); (iv) restrict our uses of your personal information; (v) seek correction or amendment of inaccurate, untrue, incomplete, or improperly processed personal information; (vi) withdraw your consent; and (vii) request erasure of personal information held about you by us, subject to certain exceptions prescribed by law. If you would like to exercise any of these rights, please contact us as set forth below.

We will process such requests in accordance with applicable laws. To protect your privacy, we will take steps to verify your identity before fulfilling your request.

If you are a California resident, you have the right not to receive discriminatory treatment by Metabase for the exercise of your rights conferred by the California Consumer Privacy Act.

DATA RETENTION

We store the personal information we receive as described in this Privacy Policy for as long as you use our Services or as necessary to fulfill the purpose(s) for which it was collected, provide our Services, resolve disputes, establish legal defenses, conduct audits, pursue legitimate business purposes, enforce our agreements, and comply with applicable laws.

SECURITY OF YOUR INFORMATION

We take steps to ensure that your information is treated securely and in accordance with this Privacy Policy. We use commercially reasonable efforts to implement and maintain reasonable technical, administrative, and physical security measures designed to protect the personal information that we collect and process.

THIRD PARTY WEBSITES/APPLICATIONS

The Services may contain links to other websites/applications and other websites/applications may reference or link to our Services. These third-party services are not controlled by us. We encourage our users to read the privacy policies of each website and application with which they interact. We do not endorse, screen or approve, and are not responsible for, the privacy practices or content of such other websites or applications. Visiting these other websites or applications is at your own risk.

CHILDREN’S INFORMATION

The Services are not directed to children under 13 (or other age as required by local law), and we do not knowingly collect personal information from children. If you learn that your child has provided us with personal information without your consent, you may contact us as set forth below. If we learn that we have collected a child’s personal information in violation of applicable law, we will promptly take steps to delete such information and terminate the child’s account.

SUPERVISORY AUTHORITY

If you are located in the European Economic Area or the United Kingdom, you have the right to lodge a complaint with a supervisory authority if you believe our processing of your personal information violates applicable law.

CHANGES TO OUR PRIVACY POLICY

We may revise this Privacy Policy from time to time in our sole discretion. If there are any material changes to this Privacy Policy, we will notify you as required by applicable law. You understand and agree that you will be deemed to have accepted the updated Privacy Policy if you continue to use the Services after the new Privacy Policy takes effect.

CONTACT US

If you have any questions about our privacy practices or this Privacy Policy, please contact us at:

Metabase, Inc.

660 4th Street #557

San Francisco, CA 94107

legal@metabase.com

Product
Why Metabase Data Sources RoadmapSecurity
Pricing
Plans Open Source
Use Cases
Self-Service Business Analytics Interactive Dashboards Embedded Analytics
Metabase Plans
Starter and Open Source Pro Enterprise
Support
Documentation Discussion Help
Status
Company
Jobs
We're hiring!
Terms of Service License Privacy Policy Contact Us
Resources
Case Studies Blog Learn Community Stories Data and Business Intelligence Glossary Partners More Resources
Example Dashboards SQL Best Practices Choosing a Data Warehouse How to Create Pivot Tables Types of SQL Joins SQL Cheat Sheet Data Bias Examples Modern Data Stack Dashboard for Marketing Teams Dashboards for Sales Teams Dashboards for Engineering Teams
Elsewhere
Twitter
Github
Stay in touch with updates and news from Metabase
© Metabase 2023