GatlasSign in

Privacy Policy

Last updated: February 1, 2026

1. Introduction

Gatlas ("we", "us", "our") is a data integration platform that helps organizations consolidate data from multiple business systems. This Privacy Policy explains how we collect, use, store, and protect your information when you use our platform at gatlas.ai.

2. Information We Collect

We collect the following types of information:

  • Account information: Email address and name provided during registration.
  • Connected service data: When you connect third-party services (such as Google Analytics, Google Ads, Google Sheets, Shopify, Stripe, QuickBooks, or e-conomic), we access and process data from those services on your behalf. The specific data depends on the streams and permissions you configure.
  • OAuth credentials: Access tokens and refresh tokens obtained through OAuth authorization flows with third-party services. These are stored encrypted and used solely to maintain your authorized connections.
  • Usage data: Basic usage information such as sync history, query logs, and connection status.

3. How We Use Your Information

  • To synchronize data from your connected services to your configured data warehouse.
  • To execute SQL queries and generate views as directed by you.
  • To perform reverse syncs (exporting data to services like Google Sheets) as configured by you.
  • To maintain and refresh authorized connections.
  • To provide customer support and improve our platform.

4. Google API Services

Gatlas's use and transfer of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements.

Specifically, we access Google user data only for the purposes described in this policy:

  • Google Analytics: Read-only access to analytics data for syncing to your data warehouse.
  • Google Ads: Read-only access to campaign, ad group, keyword, and search term performance data.
  • Google Sheets: Read and write access to spreadsheets you specify, used for data import and reverse sync exports.

We do not use Google user data for advertising, and we do not transfer Google user data to third parties except as necessary to provide and improve our services, as required by law, or with your explicit consent.

5. Intuit QuickBooks

When you connect your QuickBooks Online account, we access your financial data through Intuit's official API. This includes:

  • Company information: Basic company profile and settings.
  • Financial transactions: Invoices, bills, payments, customers, vendors, accounts, and other accounting data you choose to sync.

We use this data solely to synchronize it to your configured data warehouse. We do not modify your QuickBooks data. You can disconnect QuickBooks at any time from your Gatlas dashboard or by revoking access in your QuickBooks settings under Apps > My Apps.

6. Data Storage and Security

  • OAuth credentials are encrypted at rest using Supabase Vault.
  • All data is transmitted over HTTPS with TLS encryption.
  • Your synced data is stored in the data warehouse you configure (your own PostgreSQL or BigQuery instance). We do not retain copies of your synced data beyond what is necessary for processing.
  • Access to production systems is restricted to authorized personnel only.

7. Data Sharing

We do not sell your personal information. We share data only in the following circumstances:

  • With your consent: When you explicitly authorize a connection or reverse sync.
  • Service providers: We use Supabase (database and authentication), Vercel (hosting), and Railway (background processing) to operate our platform.
  • Legal requirements: When required by law, regulation, or legal process.

8. Data Retention and Deletion

We retain your account data and connection credentials for as long as your account is active. When you delete a connection, the associated credentials are permanently removed. When you delete your account, all associated data is deleted within 30 days. You may request deletion of your data at any time by contacting us.

9. Your Rights

You have the right to:

  • Access the personal data we hold about you.
  • Request correction of inaccurate data.
  • Request deletion of your data.
  • Revoke third-party access at any time by disconnecting services in your Gatlas dashboard or revoking access from the third-party service directly.
  • Export your data.

10. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the updated policy on this page and updating the "Last updated" date.

11. Contact

If you have questions about this Privacy Policy or your data, please contact us at privacy@gatlas.ai.