🔒 Zero-Knowledge Architecture: PowerIBI never sees your data. Everything runs locally in your browser. We literally cannot access your data even if we wanted to.
Local-First Architecture
PowerIBI is built on a local-first architecture using DuckDB-WASM, which means:
- All data processing happens in your browser
- No data is sent to our servers
- Works completely offline after initial load
- Your data never leaves your device
Security Features
💻 Client-Side Processing
100% browser-based data analysis
🔐 Encrypted Storage
IndexedDB with browser encryption
🚫 No Server Access
We can't see your data, period
🔒 HTTPS Only
All connections are encrypted
🔑 Local API Keys
Keys stored in browser only
🧑💻 Open Source
Transparent, auditable code
Data Storage
All your data is stored locally using your browser's IndexedDB:
- Uploaded Files: Stored in IndexedDB, never uploaded to servers
- Dashboards: Configurations saved locally
- Settings: Preferences stored in local storage
- API Keys: Encrypted and stored locally, never transmitted
You can clear all data at any time from your browser settings or within the app.
API Keys & AI Features
When you configure AI features:
- API keys are stored only in your browser's local storage
- Keys are encrypted before storage
- Keys are never sent to PowerIBI servers
- API calls go directly from your browser to AI providers
- You can delete keys anytime from settings
Third-Party Integrations
PowerIBI integrates with AI providers (OpenAI, Google) only when you explicitly configure them:
- Direct API calls from your browser to AI providers
- No proxy through our servers
- You control what data is sent
- Subject to AI provider's privacy policies
Network Security
- HTTPS Everywhere: All connections use TLS encryption
- No Tracking: No third-party analytics or tracking scripts
- CSP Headers: Content Security Policy prevents XSS attacks
- CORS Protection: Strict cross-origin policies
Best Practices
To maximize your security:
- Use a modern, updated browser
- Keep your API keys secure and private
- Clear browser data when using shared computers
- Review AI provider privacy policies
- Use strong passwords for cloud features
Reporting Security Issues
Found a security vulnerability? We take security seriously:
- Report issues through our GitHub repository
- We'll respond within 48 hours
- Responsible disclosure appreciated
- Security researchers are credited
Compliance
PowerIBI's local-first architecture means:
- No GDPR concerns (we don't process your data)
- No data residency issues
- No data breach risks from our side
- You maintain full data control