Skip to content
EISBERG
Legal · Privacy

Privacy policy.

The short version: we do not see your customer data, our operational surface stays in your tenant, and our marketing site does not use advertising trackers. The longer version is below — and a formal policy reviewed by privacy counsel will replace this page before commercial launch.

Customer data is not Eisberg data.

Customer data lives in customer-owned object storage — your S3, your Azure Blob, your GCS — encrypted with your KMS keys. Eisberg infrastructure is structurally incapable of holding it. Our privacy posture starts with the architectural decision that we never see what we are not authorized to see.

Operational metadata stays inside the tenant boundary.

Query metadata, audit events, lineage edges, classification decisions — the platform's operational surface — are processed inside the customer's tenant boundary. They are not shared across tenants without the customer's explicit opt-in to the cross-customer learning program.

Marketing-site analytics are aggregated and anonymized.

This site uses privacy-respecting analytics (Vercel Speed Insights and Vercel Analytics) plus standard CSRF protections on form submissions. We do not run third-party advertising trackers, fingerprinting libraries, or session-replay tools.

Form submissions route to a human inbox.

Demo requests, contact forms, and press inquiries route to a small set of role-based inboxes (sales@eisbergdata.com, trust@eisbergdata.com, careers@eisbergdata.com, partners@eisbergdata.com, press@eisbergdata.com, hello@eisbergdata.com, privacy@eisbergdata.com). We do not sell, share, or rent contact data.

Sub-processors are disclosed in writing.

The full list of sub-processors that interact with customer environments is available under NDA, including their certifications and contractual data-processing terms. None of them store customer data — customer data lives only in the customer's own object storage.

Your rights.

You can request a copy of the personal data we hold about you (it is small — typically your email and the contents of any messages you sent us), correct it, or delete it. Email privacy@eisbergdata.com with your request. We respond within 30 days, the GDPR-mandated timeline.

Privacy questions? Email privacy@eisbergdata.com. Last updated 2026.