Security and Privacy

While Metaplane helps companies trust their data, those same companies trust Metaplane to securely access their metadata. Ensuring high standards to protect customer data was critical for customer acquisition in this age of data breaches and increased privacy concerns.

For all questions and documentation requests, you can contact our security team at [email protected] or via a Shared slack channel.


Metaplane is SOC 2 Type II compliant. Please contact our team to obtain a copy of our SOC 2 report.


Our customers typically do not request or require DPAs because we do not retrieve or store sensitive customer data (e.g. PII), only aggregate statistics and metadata. As a result, GDPR data deletion requests do not need to be propagated to us because we do not store such data.

However, we're happy to provide a DPA or review a vendor DPA upon request. Please contact our team for this documentation.


Metaplane is in the process of achieving HIPAA compliance, so we do not currently sign BAAs. Please contact our team to join the HIPAA waitlist.

Did this page help you?