Holistics Docs - End-to-End Business Intelligence Platform

Holistics Documentation

Welcome to the Holistics Documentation page. You'll find comprehensive guides and documentation to help you start working with Holistics as quickly as possible, as well as support if you get stuck. Let's jump right in!

Get Started

Data Security

Does Holistics store my application?

Holistics works without the need to store or sync a copy of your database data in our servers. This means that your data sits securely within your system at all times. You retain full ownership and control over your data.

When a user accesses the report, we will send a SQL query to your database for processing. Once the query completes, Holistics will display the results to your browser.

How Holistics work with Customer's Data Warehouse

How Holistics work with Customer's Data Warehouse

Holistics only stores a few things:

  • Metadata: the definitions and settings of your reports, filters, dashboards, etc. Examples: query definitions, report description, chart type and specific custom settings describing the nature of the report.
  • Cache: Holistics gives you the option to set a cache for your reports, dashboards and filters. This speeds up access to your data, and also protects your database against repeated queries. The cached data will expire after a determined period of time. No cache data will ever be stored forever on Holistics servers.

Does your cache store the results of the SQL query, or the raw data of my database?

The results. To understand more on this process and how Holistics work behind the scene, refer to this document.

When exactly do your cache store the data, and for how long?

There are 2 scenarios where we store your resultset data on our cache server.

First, when we first retrieve the resultset from your database, we store to our Cache server. You can configure the duration we store the data is can be configured in the settings window of the report.

You can set the cache duration in the report's settings

You can set the cache duration in the report's settings

Second, when someone uses the Report Export functionality (export to Excel/CSV), we generate the exported file and store it on our storage server. We then generate a secure download link for the end users to download.

  • The exported files stored on our cloud storage server (using AWS S3) are encrypted and automatically removed after 24 hours.
  • You can request to have these exported files to be stored on your S3 cloud storage instead of ours. Please contact us to talk more about this. This is available on our Enterprise plan.

My database is behind a private firewall. How do I give access to Holistics?

To securely open your DB for Holistics to access, there are 2 ways:

  • IP Whitelist: You can add Holistics' IP addresses to your whitelist so that Holistics can connect to your DB. For more information, please refer to Connect Database section.

  • SSH Tunnel: You can setup a secure SSH tunnel from your DB to Holistics Network, so that all traffic will go through this channel. For more information, please refer to Setup Reverse SSH Tunnels section.

Since our database credentials are stored in Holistics' system, how do you protect them?

We apply AES encryption before storing your credentials in our database. The credentials are then decrypted on the fly whenever we make a connection to your DB server, and the raw credentials are never persisted anywhere.The encryption key resides in a server separated from the DB server.

Our DB server is under a private VPC network and is only accessible by our app servers.

Where are your servers hosted?

Our servers are hosted with a reputable data center provider based in Singapore.

How do I track what data/reports my team has accessed?

Holistics provides you real-time activity logs and audit trails to know the reports your team access to, the IP they accessed from, and their respective usage activities. Enterprise clients can also get more specific and detailed information on a regular basis.

Data Security


Suggested Edits are limited on API Reference Pages

You can only suggest edits to Markdown body content, but not to the API spec.