Documentation Index

Fetch the complete documentation index at: https://sql-spreads.document360.io/llms.txt

Use this file to discover all available pages before exploring further.

SQL Spreads Security

Prev Next

Data Storage

SQL Spreads is downloadable software installed on your users’ desktop machines. SQL Spreads works directly with data stored either on your on-premises servers or in your organization’s cloud databases, such as Azure SQL.

SQL Spreads does not store customer data outside of your infrastructure.

All data is stored and processed on your own machines, cloud accounts, and databases. The company behind SQL Spreads does not access, process, or store your business data.

Authentication

SQL Spreads relies on industry-standard Windows, SQL Server, and Microsoft Entra ID security. SQL Spreads does not implement its own user management or authentication layer for database access.

The SQL Spreads Excel Add-In supports the following authentication methods for SQL Server:

  • Windows Authentication
  • SQL Server Authentication
  • Microsoft Entra ID Authentication (including MFA support)

We recommend following Microsoft’s best practices by using Windows Authentication or Microsoft Entra ID Authentication whenever possible.

image.png

Independent Penetration Testing

SQL Spreads has undergone independent penetration testing performed by an external security firm.

The assessment covered:

  • SQL Spreads Excel Add-In
  • SQL Spreads License Manager

The penetration test was conducted using recognized industry methodologies and best practices, including:

  • OWASP
  • MITRE
  • NIST
  • CREST
  • NIS

All findings identified during the assessment were remediated, and the remediation work was verified during a retesting phase.