Database Connection Security
Throughout Auto Insights, we use a wide variety of industry-standard security technologies and procedures to help protect your information from unauthorized access, use, or disclosure. Here are some frequently asked questions pertaining to the security of database connections.
Is the password entered during the database connection setup stage stored in Auto Insights?
We store passwords in Auto Insights' own MySQL server using symmetric AES-CBC encryption with a 128bit key and PKCS7 padding. The encryption key is managed by Auto Insights. It is treated as a production secret stored encrypted within a vault with limited access, according to the “principle of least privilege”.
Is my data fetched from my database in real-time or on-demand?
Your data is not fetched live or streamed. It is fetched on-demand when a user elects to upload or refresh manually, or on-demand at a pre-defined time if scheduled refreshes are set up. The data we fetch is transformed into a Parquet file after limited cleansing, and stored on encrypted mounted disks in a secure network location. It is not loaded into Auto Insights' own database.