Deployment Options

Dedicated Cloud deployment may be the preferred deployment method by customers with special privacy and security concerns and in highly regulated domains. In a Dedicated Cloud deployment, the entire Datafold stack runs on dedicated cloud infrastructure and network, which usually means it is:

1. Not accessible to public Internet (sits behind customer’s VPN)
2. Uses internal network to communicate with customer’s databases and other resources – none of the data is sent using public networks

Datafold is deployed to customer’s cloud infrastructure but is fully managed by Datafold. The only DevOps involvement needed from the customer’s side is to set up a cloud project and role (steps #1 and #2 below).

1. Customer creates a Datafold-specific namespace in their cloud account (subaccount in AWS / project in GCP / subscription or resource group in Azure)
2. Customer creates a Datafold-specific IAM resource with permissions to deploy the Datafold-specific namespace
3. Datafold Infrastructure team provisions the Datafold stack on the customer’s infrastructure using fully-automated procedure with Terraform
4. Customer and Datafold Infrastructure teams collaborate to implement the security and networking requirements, see all available options

See cloud-specific instructions here:

• AWS
• GCP
• Azure

After the initial deployment, the Datafold team uses the same procedure to roll out software updates and perform maintenance to keep the uptime SLA.

Datafold is deployed in the customer’s region of choice on AWS, GCP, or Azure that is owned and managed by Datafold. We collaborate to implement the security and networking requirements ensuring that traffic either does not cross the public internet or, if it does, does so securely. All available options are listed below.

This deployment method follows the same process as the standard customer-hosted deployment (see above), but with a key difference: the customer is responsible for managing both the infrastructure and the application. Datafold engineers do not have any access to the deployment in this case.

We offer open-source projects that facilitate this deployment, with examples for every major cloud provider. You can find these projects on GitHub:

• AWS
• GCP
• Azure

Each of these projects uses a Helm chart for deploying the application. The Helm chart is also available on GitHub:

• Helm Chart

By providing these open-source projects, Datafold enables you to integrate the deployment into your own infrastructure, including existing clusters. This allows your infrastructure team to manage the deployment effectively.

Because the Datafold application is deployed in a dedicated VPC, your databases/integrations are not directly accessible when they are not exposed to the public Internet. The following solutions enable secure connections to your databases/integrations without exposing them to the public Internet:

• AWS
• GCP
• Azure

Please inquire with sales@datafold.com about customer-managed deployment options.