Your Infrastructure, Your Data, Your Control

Netdata’s edge-native architecture keeps all observability data on-premises by default. Unlike traditional solutions that centralize metrics in vendor clouds, Netdata processes, stores, and analyzes data locally on each monitored system. When using Netdata Cloud, only metadata (node names, chart titles, alert configurations) is transmitted - never raw metrics or logs. This architecture-based approach makes sovereignty the default state, not an expensive add-on. Learn more about our distributed architecture.

Data residency means where data physically lives; data sovereignty means who can access it under which legal framework. Traditional monitoring vendors offer residency (EU region) but fail sovereignty through four mechanisms: silent replication (HA mirroring to other regions), support backdoors (debugging pulls data globally), backup betrayal (cross-region backups), and analytics leaks (telemetry aggregated centrally). Netdata’s architecture eliminates all four failure modes - your data stays exactly where you deploy it, accessible only under your control.

Yes, completely. Netdata supports full air-gapped deployment with zero internet dependencies. Install using offline packages, configure parent-child streaming within your isolated network, and access dashboards locally. Real-world example: Falkland Islands Government uses this architecture, achieving 99% downtime reduction while maintaining complete data sovereignty. Netdata Cloud On-Prem provides unified control plane within your infrastructure for regulated environments.

Deploy regional Parent clusters (one per jurisdiction) with data staying local to each region. Netdata Cloud’s distributed query engine provides unified visibility by querying Parents in parallel - aggregating results without moving raw metrics. Single deployment model satisfies GDPR (EU), NIS2, DORA, CCPA (US), HIPAA (healthcare), and PCI DSS (finance) simultaneously. RBAC with room isolation segments access by region while maintaining consistent interface. Explore deployment options.

Netdata is SOC 2 Type 2 certified. We’re GDPR and CCPA compliant through internal audits with Data Processing Agreements (DPAs) and Standard Contractual Clauses (SCCs) available. HIPAA-aligned with Business Associate Agreements (BAA) available for healthcare organizations. PCI DSS-aligned for financial services. Our open source core (GPL v3+) enables security teams to review code directly, providing transparency beyond certifications. View security details.

All metrics and logs are stored locally on monitored systems (Netdata Agents) or regional Parent nodes - never in Netdata Cloud infrastructure. Default storage location is configurable on your systems. Netdata Cloud (when used) stores only metadata in AWS and Google BigQuery with Standard Contractual Clauses for EU transfers. Metadata includes node names, chart titles, alert configurations - not raw metric data. See architecture details.

Netdata Agents buffer metrics locally during Parent/Cloud disconnection (typically 1+ hour buffer). When connection restores, automatic replication fills data gaps before resuming live streaming - zero data loss. Each Agent and Parent also provides local dashboard access, enabling troubleshooting even during complete network partitioning. This resilience is critical for maintaining observability during the incidents you need it most. Learn about zero-downtime monitoring.

Child Agents stream metrics to Parent nodes within same jurisdiction via encrypted TCP connection. Parents aggregate and store data regionally without cross-border transmission. Configure multiple Parents for high availability within region - no cross-region replication needed. Hierarchical streaming enables multi-tier compliance (National to Regional to Global) with data staying local. Explore Parent deployment.

Yes, via Model Context Protocol (MCP). Netdata Agents and Parents are MCP servers - connect Claude Code, ChatGPT, Gemini, or custom LLMs. Queries execute against local Agents/Parents; data never sent to vendor AI services. Alternative: Use Netdata Cloud AI features (managed LLMs with optimized playbooks) with 10 free sessions per month included. Learn about AI capabilities.

Three options based on requirements: (1) Maximum Sovereignty: Air-gapped parent-child architecture with no Netdata Cloud - Parents provide centralized dashboards within your network. (2) Balanced: Parent-child streaming with Netdata Cloud for unified interface - metrics stay regional, only metadata in Cloud. (3) Complete Control: Netdata Cloud On-Prem - full control plane within your infrastructure, all components self-hosted. View deployment guide.

Business plan includes unlimited metrics, logs, users, dashboards, ML anomaly detection, AI troubleshooting (10 sessions/month), alerts, RBAC, SSO, SCIM, Windows support, and all compliance features. No premiums for data residency, regional deployment, or encryption. Predictable per-node pricing with volume discounts available. See detailed pricing.

Netdata achieves 90% cost reduction compared to traditional centralized monitoring. Traditional SaaS typically charges per-metric fees, data residency premiums, compliance feature gates, and unpredictable egress costs. Netdata’s predictable per-node pricing includes all features with no volume charges - costs scale linearly with infrastructure, not data volume. Calculate your savings.

Core Netdata Agent is GPL v3+ - free forever, unlimited nodes, full monitoring capabilities. Self-hosted parent-child architecture provides centralized dashboards without cloud. Limitations: No unified Cloud interface across multiple Parents, no managed AI features, community support only. Ideal for cost-sensitive deployments or maximum control. Explore open source.

Netdata supports parallel operation - install alongside existing tools without disruption. OpenTelemetry support enables gradual migration of instrumentation. Export historical data from existing tools to Netdata’s local storage. Timeline: Typically 2-4 weeks for phased migration with validation periods. Zero-configuration auto-discovery eliminates manual setup burden. View integration options.

Minimal. Zero-configuration auto-discovery eliminates manual setup. No query language required - point-and-click analysis replaces PromQL. Basic Linux/Windows admin skills sufficient. RBAC and SSO configuration requires standard identity management knowledge. Advanced features (custom collectors, ML tuning) are optional. Most teams become productive within hours, not weeks. Get started.