Startups > Immuta

Immuta

Immuta helps enterprises securely govern and provision sensitive cloud data at scale.

Series E $267M total Founded 2015 Boston, Massachusetts 243 employees

Immuta automates sensitive data discovery, security, and access control across multiple cloud data platforms using attribute-based access control (ABAC) and privacy-enhancing technologies. The platform enables organizations to identify sensitive data, enforce dynamic policies, and monitor data activity at scale across AWS services, Snowflake, Databricks, and other data platforms. Founded by a former U.S. Army intelligence officer, Immuta serves enterprises handling regulated data who need to reduce manual policy management by 75X while maintaining compliance with GDPR, CCPA, and other privacy regulations.

Problem solved

Organizations manually create and enforce hundreds of data access policies across different platforms, creating bottlenecks that delay data access by months while increasing security and compliance risks.

Target customer

Enterprise organizations with large data assets in cloud platforms (AWS, Snowflake, Databricks) that need to balance secure data access with compliance requirements, including financial services, healthcare, pharmaceuticals, and government agencies.

Website LinkedIn Crunchbase

Founders

Matthew Carroll

CEO

Former U.S. Army intelligence officer with extensive experience in sensitive data handling, access control, and privacy challenges.

Steven Touw

Co-founder

Data systems expert with background in distributed systems and data integration for scalable secure data management.

Mike Schiller

Co-founder

Co-founder with technical expertise in data platform architecture and security.

Sapan Shah

Co-founder

Co-founder contributing to platform development and strategy.

Funding history

Seed Unknown June 2015 Led by Blu Venture Investors · Sequoia Apps

Series A Unknown February 2017 Led by Greycroft · Drive Capital

Series B Unknown June 2018 Led by DFJ Growth · Unknown

Series C Unknown June 2020 Led by Dell Technologies Capital · Intel Capital

Series C Extension $40M June 2020 Led by Intel Capital · Unknown

Series D $90M May 2021 Led by Unknown · Unknown

Series E $100M June 2022 Led by NightDragon · Snowflake Ventures, Dell Technologies Capital, DFJ Growth, IAG, Intel Capital, March Capital, StepStone, Ten Eleven Ventures, Wipro Ventures

Series E Extension Unknown February 2023 Led by ServiceNow · Unknown

Series E Extension Unknown May 2023 Led by Databricks Ventures · Unknown

Total raised: $267M

Industries

Cyber Security Big Data Analytics Privacy

Pricing

SaaS subscription model with metrics-based pricing (likely based on data volume, users, or compute). Specific pricing tiers not publicly disclosed. User reviews indicate the platform is expensive.

Notable customers

Roche, Mercedes-Benz Group, IAG, U.S. Army, S&P Global, ADP, J.B. Hunt, Atlassian, Center for New Data

Integrations

Amazon Redshift, Amazon S3, Amazon SageMaker, Amazon EMR, Snowflake, Databricks, AWS services

Website

immuta.com/

Competitors

BigID

Data discovery and classification platform; less focused on dynamic policy enforcement and access control automation.

Satori

Data security platform with similar ABAC capabilities but narrower platform integrations and less enterprise-scale deployment.

Cyral

Database-centric data security platform; less comprehensive for multi-cloud data governance and policy automation at scale.

Saviynt

Identity and access management platform with broader IAM scope but less specialized in data-layer governance and privacy-enhancing technologies.

Egnyte

File-centric data governance solution; less focused on SQL-based data warehouses and cloud analytics platforms.

Why this matters: Immuta is a leading enterprise data governance platform backed by $267M from top-tier investors (NightDragon, Snowflake Ventures, Databricks Ventures, Intel Capital, Dell Technologies), with deployment across Fortune 500 companies and government agencies. The platform addresses a critical gap in cloud data security by automating policy enforcement across heterogeneous platforms, reducing manual governance overhead by 75X.

Best for: Large enterprises with sensitive data across multiple cloud platforms who need to accelerate secure data access while maintaining compliance with privacy regulations.

Use cases

Healthcare data sharing without manual access requests

A healthcare organization uses Immuta to automatically discover PHI across multiple cloud data warehouses, enforce HIPAA-compliant masking and de-identification policies, and provision access to researchers within days instead of months. Policy exceptions are tracked and audited for compliance.

Financial services regulatory compliance automation

A financial institution applies consistent data governance policies across AWS, Snowflake, and Databricks to meet GDPR, CCPA, and SOX requirements. Immuta reduces the data engineering effort by automating policy enforcement, cutting time-to-data from 90 days to 3 days while reducing annual costs by $1M+.

AI/ML governance for sensitive datasets

A pharmaceutical company uses Immuta's Guardrail Policies to automatically govern data access for ML teams building models on patient data, enforcing differential privacy and de-identification techniques. Access requests route through multi-approver workflows, and activity is continuously monitored.

Data marketplace with governed access

An enterprise uses Immuta Marketplace to create a self-service data hub where business units discover datasets with visibility into what data they can access based on their attributes. Policies dynamically mask or redact sensitive columns, eliminating manual provisioning.

Alternatives

BigID Focus on data discovery and classification; less comprehensive for dynamic policy enforcement and access control automation across heterogeneous platforms.

Satori Similar ABAC approach but primarily cloud data warehouse-focused; narrower platform coverage and less mature enterprise deployment.

Cyral Database and API security-first approach; less specialized in data governance, privacy-enhancing technologies, and multi-platform orchestration.

Custom IAM + Data Masking Tools Manual combination of role-based access control and home-grown masking scripts; does not scale, lacks policy orchestration, and requires significant engineering overhead.

FAQ

What does Immuta do? +

Immuta is a cloud data governance platform that automates the discovery of sensitive data, enforcement of access control policies, and monitoring of data activity across multiple platforms. Using attribute-based access control (ABAC) and privacy-enhancing technologies like de-identification and masking, it enables organizations to provision secure data access in days instead of months while maintaining compliance with regulations like GDPR and CCPA.

How much does Immuta cost? +

Immuta uses a metrics-based SaaS subscription model, likely based on data volume, number of users, or compute usage. Specific pricing tiers are not publicly available; pricing is custom and requires contacting the sales team.

What are the main alternatives to Immuta? +

Main alternatives include BigID (data discovery-focused), Satori (dynamic masking for data warehouses), Cyral (database security), and Saviynt (identity and access management). Custom IAM solutions with home-grown masking are common but less scalable.

Who uses Immuta? +

Enterprise customers with large sensitive datasets include Roche, Mercedes-Benz Group, IAG, the U.S. Army, S&P Global, ADP, J.B. Hunt, and Atlassian. Organizations in healthcare, financial services, government, and pharmaceuticals are primary users.

How does Immuta compare to Satori? +

Both use attribute-based access control and privacy-enhancing technologies to govern data. Immuta offers broader platform coverage (AWS, Snowflake, Databricks, Redshift, etc.) and more mature enterprise-scale deployments, while Satori is more narrowly focused on cloud data warehouses. Immuta also emphasizes governance automation and policy orchestration more heavily.

What platforms does Immuta support? +

Immuta integrates with AWS services (Redshift, S3, EMR, SageMaker), Snowflake, Databricks, and other major cloud data platforms. It provides native integrations across compute and storage services for dynamic policy enforcement.

What is the ROI of implementing Immuta? +

A Forrester Total Economic Impact study found Immuta delivered $6.08M in benefits with 175% ROI over three years for a composite organization. Case studies show customers reducing time-to-data by 30x (from 90 days to 3 days) and saving over $1M annually in data engineering costs.