Security and privacy
Safeguarding your data and privacy is foundational to how we operate as a business. We take this responsibility seriously. This article explains how your information is protected, how it is used, and what happens if you uninstall Better Reports.
In this article:
- Data security measures
- Connector access and data use
- Protecting personally identifiable information (PII)
- Data storage, subprocessors, and compliance
- Data retention and deletion
- Incident response
- Related policies
- Need more support?
Data security measures
Encryption
- In transit β all data is transmitted over HTTPS
- At rest β all data is encrypted and stored on Microsoft Azure servers in the United States
- Network security β production systems are protected behind firewalls
Secure access
- All sessions use HTTPS-only connections
- Strict SameSite cookie policies are enforced
- Logging out ends all active sessions on all devices
Connector access and data use
Better Reports imports data using secure, app-approved authentication flows.
- We request read-only access for all connectors
- We do not use or sell account data or end-user data for:
- Artificial intelligence and machine learning (AI/ML) training
- Analytics outside product functionality
- Any secondary commercial purposes
Protecting personally identifiable information (PII)
To safeguard sensitive data:
- Support staff see masked PII such as emails, phone numbers, and addresses
- Masked data may be accessed temporarily for troubleshooting
- Logs never include PII or end-user-level data
Business data remains private and is used solely to deliver Better Reports features.
Data storage, subprocessors, and compliance
Where data is stored
All account data is hosted on Microsoft Azure in the United States.
Subprocessors
We rely on a small set of subprocessors to operate specific features:
- Microsoft Azure β infrastructure
- Google Sheets API β exporting to Sheets
- SendGrid β scheduled report emails
These services process data only when you use features that require them.
GDPR compliance
Better Reports complies with GDPR, and our subprocessors use Standard Contractual Clauses (SCCs) for lawful international data transfers.
Data retention and deletion
- Uninstalling or disconnecting a connector β all data received from that connector is automatically deleted. Deletion begins immediately and can take several hours for high-volume accounts
- Configuration retention β custom fields, report templates, and other Better Reports configurations remain available unless you request full removal
- Manual deletion β request complete deletion of both connector data and configuration at any time
Incident response
- Better Reports has had no data breaches since launching in 2017
- If a confirmed breach affects your account, we will notify you promptly and provide recommended next steps
Related policies
Need more support?
If you get stuck or have additional questions, you can contact our team directly through the Help widget in the bottom-right corner β we typically respond within one business day.