Your data stays local, private, and fully in your control. Galaxy is designed from the ground up with a local-first, privacy-preserving architecture — and a deep commitment to modern security best practices.
Data Ownership, Control, and Compliance Galaxy ensures that you maintain full ownership and control over your data while our team builds with security and compliance in mind.
Ownership & Data Privacy You own your data: Galaxy users retain complete ownership over their inputs and outputs.No model training on your data: We never use your data or schemas to train any models.Data remains yours: All content you create, including queries and outputs, remains your intellectual property.
Access Control & Permissions Your organization controls access — we enforce a strict least privilege model.
Self-Managed Access Admins can define and manage permissions for database connections, environments, and more.
Minimal Default Permissions New users start with minimal access by default, ensuring sensitive data is protected out of the box.
How Galaxy Connects to Your Infrastructure Galaxy runs locally and never transmits your query data to the cloud.
Self-Managed Access Desktop app only: Galaxy runs as a desktop app; no queries are routed through our servers.No data leaves your system: Query execution and results remain inside your infrastructure.Galaxy AI & Schema Handling AI is optional and disabled by default. If enabled, only schema metadata (e.g., table names, column names) is shared — never raw data. No AI training on your schemas , and schema details are not stored after the session.Chat History & Auditing Chat history is scoped to your org and workspace. Audit logs help admins monitor usage and ensure compliance.Encryption & Data Protection We follow industry standards to protect your credentials and usage data.
TLS 1.2+ encryption in transit Encrypted credential storage (locally, if enabled) We do not store query history or user data on our servers Coming soon: expanded encryption, stronger credential protections, and org-wide security policies.
Security Best Practices in Development We build with security in mind at every step.
All code is peer-reviewed with security scrutiny. We follow minimal data retention principles. Features are designed to avoid persistent storage of sensitive data. Future plans include external audits and penetration testing.
Our Commitment to Security as We Scale Security is a journey — and we’re investing in it every step of the way.Upcoming initiatives include:
Enhanced permission models Third-party security audits SOC 2 compliance readiness Our goal is to earn your trust — not just once, but continuously.
Questions? Let’s Talk Security Have questions about our security practices or need a formal policy doc?
📩 Email us anytime at hello@getgalaxy.io
Trusted by top engineers on high-velocity teams
.avif)
.avif){kind=logo}
