LakeFusion is built with security as a foundational principle. Our platform leverages Databricks’ Unity Catalog for all authentication and authorization, providing granular access controls at the catalog, schema, table, column, and row levels. We implement role-based access control (RBAC) through Databricks' identity management via OAuth and SDK integration. All access to LakeFusion corporate systems is logged, and security monitoring is enabled across all systems, including activity monitoring, file integrity monitoring, and vulnerability scanning. All databases, data stores, and file systems are encrypted at rest, and all data in transit is protected using TLS/SSL encryption.
LakeFusion's architecture is designed around a critical security principle: your data never leaves your environment. As a Platform-as-a-Service (PaaS) solution deployed directly within your cloud infrastructure (AWS or Azure), all customer data resides exclusively in your Delta Lake storage under your control. LakeFusion does not store or process customer data as part of our standard service offering. Your data inherits your existing cloud provider's encryption at rest, remains within your Virtual Private Cloud (VPC), and is protected by your Unity Catalog permissions that LakeFusion cannot override.
All production data at rest inherits the encryption policies of the Databricks underlying storage. If your organization enforces strict encryption at rest, LakeFusion will inherit those policies and cannot override them. All internet and intranet connections are encrypted and authenticated. Because LakeFusion processes data in place within your Databricks Lakehouse, your data security posture is controlled by your existing cloud infrastructure security configurations.
Our Privacy Policy outlines how we handle information in compliance with applicable privacy regulations. Importantly, LakeFusion does not store or process customer data as part of our standard service offering. Your source data, processed data, and Golden Records remain entirely within your Databricks environment under your control.
LakeFusion's policies and architecture are designed to support compliance with GDPR, CCPA, and other data protection regulations. Because we deploy within your environment and leverage Unity Catalog for governance, you maintain full control over data residency, access, and processing. Our PaaS deployment model means your data never leaves your cloud environment, simplifying compliance with data localization requirements.
