New: AI & text-to-SQL on your own SupersetBook a demo
D23 logoD23
Security & Governance

Enterprise security, out of the box

SSO, row-level security, and audit logs — ready on day one.

Book a demoTalk to us
SOC 2 Type II · SAML SSO · RLS
SSO login · okta.acme.com Allowed
Dashboard view · finance-only role Allowed
Export all rows · restricted datasetDenied
01
SSO: SAML, OIDC & LDAP
01

SSO: SAML, OIDC & LDAP

Connect Okta, Azure AD, Google Workspace, or any standards-compliant identity provider. One login for your whole data stack.

  • SAML 2.0, OIDC, and LDAP supported
  • Auto-provision users and sync groups from your IdP
  • MFA enforced at the IdP level — D23 inherits it
02
Row-level security
02

Row-level security

RLS rules filter every SQL query at execution time — not in the UI. No display-layer bug can leak a row that RLS prohibits.

  • Rules applied at query execution, not the UI layer
  • Supports attribute-based rules: user email, team, region, tenant ID
  • One rule covers all charts, exports, and API calls
03
Audit log & SOC 2
03

Audit log & SOC 2

Every login, chart view, query, and export is written to an immutable audit log. D23 is SOC 2 Type II certified.

  • Immutable log: user, action, timestamp, full SQL
  • Exportable for SIEM integration or compliance review
  • SOC 2 Type II report available on request

Works with your warehouse and your cloud

aws-color
snowflake
bigquery
claude-color
openai

How security & governance works

  1. 1

    Connect your identity provider

    Plug in Okta, Azure AD, Google Workspace, or any SAML 2.0 / OIDC provider. Users log in with their existing credentials.

  2. 2

    Map groups to roles

    Sync IdP groups to Superset roles automatically. New hires get the right access on day one; leavers lose it immediately.

  3. 3

    Define row-level security rules

    Write RLS rules once per dataset. They apply to every chart, every export, and every API call that touches that dataset.

  4. 4

    Audit every action

    Every login, dashboard view, query execution, and export is logged with timestamp, user, and full SQL — exportable for compliance.

See it in context

The compliance audit

Before

Auditors ask for evidence of who accessed sensitive financial dashboards in Q3. Nobody has a complete log.

With D23

D23's audit log exports every dashboard view and query execution for the period, with user identity and timestamp, in minutes.

The multi-tenant SaaS risk

Before

A shared Superset instance serves multiple customers. A filter bug could expose one customer's data to another.

With D23

RLS rules enforced at the SQL layer mean no bug in a UI filter can ever surface another tenant's rows.

What teams use it for

Regulated industries

Healthcare, financial services, and insurance teams get HIPAA-aligned access controls and a full audit trail for every data access.

Multi-tenant SaaS

Row-level security enforced at the database layer keeps every customer's data isolated — no UI bugs can create data leaks.

Enterprise IT governance

SSO with automatic group sync, SOC 2 Type II compliance, and centralized permission management satisfy the strictest security reviews.

The evidence · 2025-26

The numbers behind modern BI

You don't have to take our word for it. Here's what analysts and data teams are reporting right now.

10,000+

companies worldwide run Apache Superset for BI, making it the most widely deployed open-source analytics platform.

Apache Software Foundation· 2026

83%

of analytics leaders say embedded analytics directly in their product increases customer retention.

Logi Analytics / insightsoftware· 2025

$0

lock-in cost with open-source Apache Superset at the core — your data model and dashboards are always yours.

D23· 2026
Likely ROI

Most teams cut their BI cost by half and ship dashboards in days, not quarters.

D23 estimate, based on typical data-team workloads: hours saved on Superset ops, faster dashboard delivery, and self-serve analytics that no longer requires a dedicated analyst for every question. Your mileage depends on warehouse size and how many teams need access to data.

Typical BI cost reduction~50%
Dashboard delivery timeDays, not quarters
Uptime SLA99.9%
Real-world proof · 2024

It already works at this scale

Not a demo. A team in the same kind of work, with results they published.

P&C insurers

Insurance · underwriting analytics

Reported 2024

P&C carriers that replaced legacy BI tools with open-source Superset reported 50–70% lower total analytics cost, while underwriters gained live loss-ratio and combined-ratio dashboards that previously took two weeks to produce.

50–70%

lower total analytics cost

live

loss and combined ratio views

weeks → hours

to refresh underwriting reports

P&C insurers · Industry benchmark 2024

The strongest results come from teams with a connected warehouse, defined metrics, and dashboards their stakeholders actually use. That is exactly what D23 delivers.

SOC 2

Type II certified, audit log on every query

BI that your security team approves — without a six-month review cycle.

Explore more of D23

Managed Apache Superset

Zero-downtime upgrades. No infra tickets. Just dashboards.

Embedded analytics

Your brand. Your data. Invisible infrastructure.

AI analytics

Natural language to insight in seconds.

Self-serve BI

No SQL. No tickets. No waiting.

Semantic layer

One source of truth for every number in the business.

Try D23 for Free

Turn every team into a data team.

Get managed Apache Superset, the dashboards your business needs, and AI on top, without hiring a data team.

Get Started

Ready to give D23 a try?
Get up and running in minutes.

Try for free
For Enterprises

Need a custom solution?
Reach out for consultation.

Talk to an Expert