AI Data Policy
Data settings
You can manage data sharing under Settings -> AI Settings -> Data Provided To AI.
Data provided to Holistics AI
Holistics AI ensures a secure and transparent approach to data processing. To provide helpful, context-aware responses, Holistics AI may access different kinds of data. These data types include:
-
Metadata: Information of Holistics objects that the user is currently working with. This includes titles, labels, descriptions, text blocks, data types, model relationships, formulas, chart settings, AMQL codes, and git commit messages.
-
Sample Data (Optional): A few sampled values of the source database columns that the user is currently working with.
-
Result Data (Optional): Result data (in the form of csv and images) of the charts that the user is currently working with.
AI providers
OpenAI
Holistics currently uses OpenAI APIs.
- All processing follows OpenAI's usage policies and API data policies.
- Data sharing is disabled
- API call logging is disabled
Custom AI provider
When using Custom AI providers, you can manage your provider's data settings, such as Data sharing, on the provider's platform.
Data shared by features
Each AI capability uses only the data it needs. You stay in control of what’s shared.
| Mode | Metadata | Sample Data | Result Data |
|---|---|---|---|
| Explore Data | ✅ Yes | 🟡 Optional Allow the AI to learn about the data structure and patterns to write filters more accurately. | 🟡 Optional Allow the AI to provide summary, insights, and analysis on the result. |
| Search Docs | ⚪ No | ⚪ No | ⚪ No |
| Generate data model field description | ✅ Yes | 🟡 Optional Allow the AI to learn about the data structure and patterns to generate more useful descriptions. | ⚪ No |
| Generate tag description | ✅ Yes | ⚪ No | ⚪ No |
| Generate commit message | ✅ Yes | ⚪ No | ⚪ No |
| Generate PR description | ✅ Yes | ⚪ No | ⚪ No |
Query execution
Query executions are done on Holistics on behalf of the caller user. Therefore, all permission controls (e.g. User Roles, Row-level Permissions, Column-level Permissions) are applied as if the user is using Holistics.
Data (e.g. Sample Data and Result Data) is only sent to the AI provider if it is allowed in your Holistics AI Settings.
Data is transmitted using secured connections.
As illustrated above, the AI Provider
- Do not have direct access to your database
- Cannot write or execute SQLs directly
- Instead, it only writes AQLs. The AQL/Dataset querying is done on Holistics side and must go through user's permission controls.
Data storage and retention
- Holistics stores your AI conversations for 30 days, allowing users to access their AI chat history before it expires.
- Holistics stores your AI conversations encrypted (i.e. "Encrypted at rest").