BREAKING/// Privacera unveils Trust3 AI - unified data + AI governance platform+++ $50M Series Bled by Insight Partners/// 120 employees governing Fortune 500 data lakes+++ From Apache Rangerto the AI stack in 10 years/// Founders Balaji Ganesan and Don Bosco Durai are back at it+++ Newark, CA - quietly running the access layer for your data/// BREAKING/// Privacera unveils Trust3 AI - unified data + AI governance platform+++ $50M Series Bled by Insight Partners/// 120 employees governing Fortune 500 data lakes+++ From Apache Rangerto the AI stack in 10 years/// Founders Balaji Ganesan and Don Bosco Durai are back at it+++ Newark, CA - quietly running the access layer for your data///
Privacera company image
FILE PHOTO. PRIVACERA, FREMONT, CALIFORNIA. THE LOGO IS QUIET. THE PRODUCT IS NOT.
YesPress // Company Profile // Issue 042

Privacera.

The quiet operating system for data and AI governance. Built by the people who wrote the standard everyone else borrows from.

Founded 2016 Fremont, CA ~120 employees $67.3M raised Series B
The Scene

It is a Tuesday morning. A bank's data scientist asks for a year of customer transactions, and nobody panics.

That sentence used to be a joke. A request like that would trigger a six-week review, three Slack threads, two compliance officers, and exactly one tired analyst who eventually gave up and pulled a smaller sample. Today, at companies running Privacera, the request resolves in minutes. The analyst gets the data. The PII is masked. The audit trail writes itself. The compliance officer keeps her morning.

This is the company Privacera has become. Not a household name - it has never tried to be - but the thing under the floorboards of a surprising number of Fortune 500 data platforms. Snowflake on the left, Databricks on the right, an Azure data lake behind them, and somewhere in the middle, a policy engine deciding who gets to see what. That engine is theirs.

Privacera is the building inspector for the data lake. You only notice the inspector when something is about to fall down. - YesPress, on the value of invisible infrastructure
The Problem They Saw

Every regulator wants a copy of the audit log. Every analyst wants the raw table. Both are right.

The tension Privacera was built around is older than the cloud and harder than the cloud. Companies want their data to move fast. Governments want their data handled carefully. Most enterprises split the difference by being slow in some places and reckless in others, then writing a quarterly report about it.

Balaji Ganesan and Don Bosco Durai had seen this play out at scale before. In their previous company, XA Secure, they had built fine-grained access control for Hadoop - the answer to a question almost nobody was asking yet. Hortonworks acquired them in 2014 and donated the technology to the Apache Software Foundation. It became Apache Ranger. Today it runs in thousands of enterprises, managing petabytes of data, mostly without credit and almost entirely without complaint.

But Hadoop, of course, became a museum piece. The data didn't disappear - it moved. It went to Snowflake, Databricks, BigQuery, Redshift, S3, ADLS, and a half-dozen places nobody had heard of yet. The governance problem followed it, multiplied by the number of new clouds, and then multiplied again by GDPR, CCPA, HIPAA, LGPD, and whatever acronym the EU is shipping next quarter.

Data does not respect borders. Regulators do. Somebody had to broker that disagreement. - The shape of the Privacera bet
The Founders' Bet

Two engineers, one open-source project, and a hunch that compliance was about to eat the data world.

Balaji Ganesan
Co-Founder & CEO

Built Apache Ranger's commercial predecessor. Sold once to Hortonworks. Decided he was not done.

Don Bosco Durai
Co-Founder & CTO

Chief Security Architect of Apache Ranger. The kind of engineer regulators ask about by name.

They founded Privacera in 2016 with a thesis that sounded mundane at the time and looks prescient now: the next decade of enterprise data spend would not be on storage or compute. It would be on the permission to use either one. Every cloud would need policy. Every regulator would need proof. And nobody - not Snowflake, not Databricks, not AWS - was going to step in and play neutral broker across competitors' platforms.

So they built that broker. Quietly. Cervin Ventures wrote the seed check in 2017. Accel led the $13.5M Series A in 2020. Then, in March 2021, Insight Partners led a $50M Series B with Sapphire, Battery, and Point72 along for the ride. That funding round was, in the end, less interesting than what triggered it: customer growth of 2.5x in a year, in a category that did not technically exist.

Receipts

$67.3M raised. ~$38.5M annual revenue. 120 employees. Zero layoffs publicly reported.

Privacera is the kind of enterprise software story that does not produce press releases - it produces renewals.

The Product

One policy. Every cloud. Now every model.

The Privacera platform does one thing that is easy to say and hard to do: it lets a security team write a data access policy once, and then enforce it everywhere that data lives. Snowflake. Databricks. AWS. Azure. GCP. On-prem Hadoop, for the brave. Streaming pipelines. BI tools. And as of last year, the new battlefield - generative AI applications consuming sensitive enterprise data as if it were public Wikipedia.

Core

Data Security Platform

Sensitive data discovery, fine-grained access control, encryption, dynamic masking, and an audit trail your auditor will mistake for poetry.

New

Trust3 AI

The 2026 rebrand of Privacera's AI governance line. Real-time guardrails for LLMs and agents, with policy lineage from data to model to prompt.

Open Source

PAIG OSS

A first-of-its-kind open framework for responsible GenAI development. Apache-style DNA, modern problem.

Heritage

Apache Ranger

Still maintained, still extended. Still running in more places than anyone has bothered to count.

Most security products say no. Privacera's product is built to say yes, faster. - The thing the sales team does not have to invent

A short company history, as told by funding announcements and one acquisition.

Ten years compressed into seven dates. Receipts in chronological order.

2014
Hortonworks acquires XA Secure. The founders' first exit. The product becomes Apache Ranger.
2016
Privacera founded in Fremont, California. The bet: governance is the next decade.
2017
Seed round closes with Cervin Ventures. Small check, large patience.
2020
$13.5M Series A led by Accel. PrivaceraCloud SaaS goes live in early 2021.
2021
$50M Series B led by Insight Partners. Sapphire, Battery, Point72 join.
2024
General availability of Privacera AI Governance (PAIG). The model layer gets policy.
2026
Trust3 AI unveiled - unified, agentic governance for data and AI together.
The Proof

Customers, charts, and a few names you would recognize if anybody were allowed to say them out loud.

Privacera's public customer references include iFood, where the data platform team uses it to encrypt sensitive attributes inside Databricks and AWS; Comcast and Wells Fargo, both publicly disclosed in case studies; and a long tail of Fortune 500 companies in financial services, life sciences, healthcare, and the federal sector who prefer to be referred to only as "a large North American bank" or "a top ten health insurer." This is the way of enterprise security - the bigger the customer, the smaller the logo on your slide.

What the company looks like, by the numbers.

Sourced from public filings, press releases, and Privacera's own about page. Numbers are rounded, opinions are not.

Total Funding
$67.3M
Last Round (B)
$50M
Annual Revenue
~$38.5M
Series A (2020)
$13.5M
ARR Growth 2020
2.5x
Headcount
~120

Then there are the partnerships, which in enterprise software usually mean more than the press releases admit. Privacera is a tech alliance partner with Databricks, with deep coverage of Unity Catalog. It is a featured Snowflake partner. It sits on the AWS marketplace and integrates with Lake Formation. It works with Azure Synapse and Key Vault. It runs on Google Cloud BigQuery and Vertex AI. If you draw a Venn diagram of the major cloud data platforms and ask which company writes a connector for all of them and gets along with each one, the intersection has about three names in it. Privacera is one.

Snowflake will not enforce a policy in Databricks. Databricks will not enforce a policy in Snowflake. Somebody had to. - The neutral-broker thesis, restated
The Mission

Accelerate data democratization without lighting the compliance team on fire.

Privacera's stated mission is to accelerate data democratization. The marketing copy says it more carefully, with more keywords, but that is the gist. The unstated version - which any of their customers will tell you over a beer - is more specific: stop making analysts wait six weeks for access to a table that is already paid for.

There are two ways to do this. One is to lower the bar on security and pretend nothing bad will happen. This is the strategy of a startup with no enterprise customers and an undisclosed amount of optimism. The other is to automate the bar - make policy a piece of software, not a piece of paperwork - and let the data flow as soon as the rules are satisfied. Privacera built the second one. The customers who buy it are the ones who have already tried the first one and gotten a regulatory letter for their trouble.

Sensitive Data Discovery

Finds the PII in places nobody remembered putting it.

Fine-Grained Access

Row, column, tag, attribute, and time-based controls across clouds.

Policy Automation

Write once, enforce everywhere. The whole pitch in five words.

Why It Matters Tomorrow

Every model your company deploys will need a permission slip. Privacera is already writing them.

The generative AI wave did something inconvenient to enterprise security. It took every problem the data governance world had spent a decade trying to solve - lineage, access, masking, audit, consent, residency - and added a new dimension to it. Now those policies have to apply not just to the warehouse but to the model that read the warehouse, and to the prompt that asked the model, and to the agent that fired the prompt without supervision.

This is the territory Trust3 AI is built for. Real-time guardrails on LLM input and output. Policy enforcement that follows data into a model's context window and back out. Lineage that connects a row in Snowflake to a sentence in a chatbot response. None of this is comfortable engineering. All of it is going to be regulated. Privacera, conveniently, has been doing the underlying access-control work for ten years and has the open-source credibility to back it up.

The EU AI Act is not going to read your slide deck. It is going to read your logs. - A reasonable summary of the next five years

Back, then, to the Tuesday morning. The data scientist gets her year of transactions. The PII is masked in flight. The audit trail writes itself. Somewhere, a compliance officer takes a sip of coffee, looks at her queue, and finds it empty. She does not know Privacera's name. She has never visited their website. She will probably never meet Balaji Ganesan or Don Bosco Durai. But the policy engine they built is the reason her morning is quiet, and the reason her bank is not in the newspaper, and the reason her data scientists do not quit. That, in the end, is the company. Quiet infrastructure for loud problems. The building inspector you only notice when the building stays up.

Watch & Learn

Demos, interviews, and the founders explaining why they built this.

YouTube // Channel
Privacera official channel
Founders // Interview
Co-founders explain Privacera
Demo // PAIG
AI Governance product demo
Demo // Heritage
Apache Ranger UI tour
Find Privacera

Official channels, press, and code.

Website -> privacera.com LinkedIn Twitter / X Facebook GitHub Documentation Press releases Blog Trust3 AI