How do we keep metric definitions consistent across tools?

Adopt a semantic layer (`dbt metrics`, `LookML`, or `Cube`) and force certified dashboards to query it. Version metric definitions in Git, require PR reviews, and auto‑generate docs. Block direct joins to raw tables for certified content.

What’s the fastest way to add data quality without a platform rewrite?

Start by tagging your top 10 Gold tables and add `dbt` tests for not‑null, unique keys, and referential integrity. Wire failures to Slack/PagerDuty. Then add `Great Expectations`/`Soda` for distribution checks and `OpenLineage` for blast‑radius analysis.

Should we go streaming or stay batch for self‑service BI?

Use streaming where freshness SLO or product requirements demand it (fraud, ops). Most BI can run on micro‑batch (5–15 min) with incremental models and still meet SLOs at lower cost. Don’t over‑engineer Kafka because it’s trendy.

How do we prevent analysts from creating expensive, fragile dashboards?

Give them certified marts and semantic models with sample data by default, enforce RLS/CLS and budgets, and disable direct access to raw layers. Provide office hours and lint their queries via data review PRs.

Can we let LLMs query the warehouse safely?

Only through the semantic layer with strict scopes and guardrails (whitelisted metrics, row limits, read replicas). Log prompts/queries, add cost caps, and never let an LLM improvise joins on Bronze data.

Data-engineering · Oct 2, 2025 · 10 minute read

Self‑Service Analytics Without the Dumpster Fire: Building a Visualization Platform People Actually Trust

If your dashboards are fast but wrong, you don’t have self‑service—you have self‑sabotage. Here’s how to build a reliable, governed visualization stack that ships business value.

Alex Mercer

Principal Engineer, GitPlumbers

20 years in data and platform engineering across fintech and marketplace scale‑ups. Led migrations to Snowflake and Databricks, stood up dbt platforms, and cleaned up more broken dashboards than he cares to admit.

If your dashboards are fast but wrong, you don’t have self‑service—you have self‑sabotage.

Back to all posts

The morning the dashboard lied

We were in a quarterly review when the Looker revenue dashboard lagged by a day and inflated conversion by 11%. Marketing wanted to double spend; finance smelled smoke. Root cause: a late Fivetran load plus a LEFT JOIN explosion in an analyst‑built model. No tests. No freshness checks. Nobody on call. Classic “self‑service” without guardrails.

We put the platform on an SRE footing: data SLOs, dbt tests, lineage, anomaly detection, and a semantic layer. Within two sprints, MTTR for broken dashboards dropped from 6 hours to 20 minutes, and weekly active BI users went up 35% because people trusted what they saw. That’s the difference between visualization and value.

What self‑service actually means (and doesn’t)

Self‑service isn’t “let anyone join anything in Tableau and pray.” It’s:

Curated, certified datasets with ownership and SLOs
A semantic layer so revenue means the same thing in Power BI and Looker
Guardrails: tests, lineage, row/column‑level security, cost controls
Fast, forgiving workflows: versioned metrics, previews, and easy rollback

Tools we’ve seen work in the wild:

Semantic: dbt metrics, LookML, Cube, Transform, AtScale
BI: Looker, Tableau, Power BI, Superset, Metabase
Warehouse/Lake: BigQuery, Snowflake, Databricks (Delta Lake), Apache Iceberg

If your “self‑service” strategy depends on analyst heroics, you’re outsourcing reliability to the least reliable part of the system—humans.

Make reliability a product: data SLOs and observability

Treat data like prod. Define SLOs, measure SLIs, and page when users feel pain.

Freshness SLO: Gold layer tables within 15 minutes of source event; 99.5% compliance
Completeness SLO: >99.5% of expected rows per load window
Accuracy SLO: Key metric parity vs. ledger within ±0.5%
MTTR: <30 minutes for broken certified dashboards

Instrumentation that actually helps:

Tests in dbt or Great Expectations/Soda
Lineage with OpenLineage + Marquez (or vendor tools)
Anomaly detection: Monte Carlo, Metaplane
Alerts into PagerDuty/Opsgenie, runbooks in Backstage/Confluence, and a #data‑incidents Slack channel

Example Great Expectations checkpoint (YAML):

name: gold_orders_quality
validations:
  - batch_request:
      datasource_name: warehouse
      data_asset_name: gold.orders
    expectation_suite_name: gold_orders_suite

And a dbt model test snippet:

models:
  - name: fct_orders
    tests:
      - not_null:
          column_name: order_id
      - relationships:
          to: ref('dim_customers')
          field: customer_id
      - accepted_values:
          column_name: order_status
          values: ['PLACED','SHIPPED','CANCELLED']

Route test failures to on‑call. If a certified dataset breaks, the BI tiles should gray out with a banner, not silently mislead.

An architecture that scales and doesn’t bankrupt you

Keep it boring and observable.

Ingest: Fivetran/Airbyte for SaaS; streams via Kafka/Redpanda
Storage/Compute: BigQuery or Snowflake; or Databricks with Delta Lake (or Iceberg)
Transform: dbt core/cloud; use dbt-runner on Airflow/Dagster
Orchestration: Airflow or Dagster with OpenLineage emitters
Semantic layer: dbt metrics, LookML, or Cube for headless BI
BI: Looker, Power BI, Tableau (with Certified/Exploratory folders), or Superset
Governance: Unity Catalog, Purview, or Collibra; Okta/AAD for SSO and RBAC
Security: Row/column‑level security; PII masking; tokenization where needed
Infra: Terraform everything; GitOps deploys via ArgoCD or CI pipelines

Medallion pattern:

Bronze: raw landed data (schema‑evolved, partitioned)
Silver: cleaned, conformed with keys
Gold: business marts aligned to domains (e.g., Orders, Customers)

Put the semantic layer on Gold. Analysts explore there; only platform engineers touch Bronze.

The 90‑day blueprint that worked (twice)

Pick one domain (e.g., Checkout), and ship. Avoid platform big‑bangs.

Define 3–5 critical metrics with owners: gross_revenue, net_revenue, orders, conversion_rate.
Write SLOs for freshness/completeness/accuracy and agree on paging thresholds.
Stand up lineage (OpenLineage) and baseline monitors (Monte Carlo or open‑source + Prometheus).
Build Bronze/Silver models; enforce schemas with data contracts (Protobuf/JSON Schema).
Implement dbt transforms and tests; add CI checks on PR with dbt test.
Create a Gold mart for Checkout and a semantic layer (dbt metrics or LookML).
Wire BI to the semantic layer only; prohibit ad‑hoc direct‑warehouse joins for certified dashboards.
Add RLS/CLS and PII policies; integrate SSO with Okta/AAD.
Create 3–5 “North Star” dashboards; mark as Certified and add owner + SLO banners.
Instrument usage: BI event logs → events.bi_usage with per‑dashboard adoption.
Train analysts on the semantic model; enforce PR reviews for metric changes.
Run a weekly reliability review: top incidents, MTTR, cost hotspots, upcoming schema changes.

A minimal Airflow task to run dbt and emit lineage:

from airflow import DAG
from airflow.providers.cncf.kubernetes.operators.kubernetes_pod import KubernetesPodOperator
from datetime import datetime

with DAG('dbt_checkout', start_date=datetime(2024,1,1), schedule_interval='*/15 * * * *', catchup=False) as dag:
    dbt_run = KubernetesPodOperator(
        name='dbt-run',
        task_id='dbt_run',
        image='ghcr.io/dbt-labs/dbt-bigquery:1.7.0',
        cmds=['bash','-lc'],
        arguments=['dbt deps && dbt build --select tag:checkout --profiles-dir .'],
        env_vars={'OPENLINEAGE_URL':'http://marquez:5000'},
    )

Governance that doesn’t slow analysts to a crawl

You can be safe and fast if you automate the boring parts.

Access: SSO and RBAC groups by domain; approvals via PR to a policy repo
RLS/CLS: Implement at the warehouse (BigQuery row access policies, Snowflake ROW ACCESS POLICY and DYNAMIC MASKING)
PII: Tag columns; default to masked in non‑prod and for wide roles
Change management: Metric changes via PR with human‑readable diffs (dbt docs, LookML Git)
Shadow analytics: Allow sandboxes but block uncertified datasets from being promoted without tests and SLOs

Policy‑as‑code keeps everyone honest. If it’s not in Git, it doesn’t exist.

Cost and performance: stop lighting money on fire

Self‑service explodes cost when every click scans terabytes. Put bumpers on the lane.

Right‑size compute: Snowflake auto‑suspend/auto‑resume; BigQuery slot reservations; Databricks SQL warehouses with limits
Partition/cluster: Time partition + clustering keys on high‑cardinality columns
Caching/extracts: Looker PDTs on Gold, Tableau extracts, Power BI import for hot dashboards
Result reuse: Encourage BI to hit the semantic layer and certified views, not raw tables
Data retention: Roll old raw data to object storage; aggregate for 90‑day+ dashboards
Guardrails: Budget alerts per team; top spender dashboards in a weekly report

We’ve cut query spend 25–40% with partitioning + semantic caching alone.

What good looks like (and how you prove it)

Leaders don’t buy dashboards—they buy outcomes. Track both platform reliability and business lift.

Reliability
- Freshness SLO: ≥99.5% across Gold tables
- MTTR for certified dashboards: <30 minutes
- Incidents per quarter: trending down; <3 Sev‑2
- Test coverage: 90% of Gold models with key tests
Adoption and speed
- Time‑to‑first‑insight for a new metric: ≤2 days
- Weekly active BI users: +20–40% after launch
- Shadow datasets: -50% as certified marts grow
Cost
- Cost per dashboard view: -25% after caching/partitioning
- Warehouse idle time: <15% during business hours
Business impact
- Example: Checkout team identified a funnel drop within 15 minutes (freshness SLO), shipped a copy tweak same day, +2.1% conversion in a week

If the numbers aren’t moving, it’s not self‑service; it’s self‑deception.

Where GitPlumbers fits

We parachute into messy stacks—legacy ETL, half‑wired Tableau, orphaned LookML—and make them boring, fast, and trustworthy. Typical engagement:

2 weeks: assessment, SLOs, lineage, and a reliability backlog
4–6 weeks: medallion models, dbt tests, semantic layer, and governance
2–4 weeks: certify high‑value dashboards, cost controls, and ops hand‑off

No silver bullets, just systems that don’t wake you up at 3 a.m. When you’re ready to make your visualization platform something the business can bet on, we’ll help you ship it safely.

Related Resources

Key takeaways

Self‑service works when you pair curated data and a semantic layer with hard reliability SLOs and automated testing.
Define data SLOs (freshness, completeness, accuracy) and measure them like uptime—alert, page, and fix fast.
Adopt a medallion architecture and a semantic layer to keep metrics consistent across tools.
Instrument quality with `Great Expectations`/`Soda`, lineage with `OpenLineage`, and anomaly detection with `Monte Carlo` or `Metaplane`.
Governance must be invisible-by-default: SSO, row/column-level security, PII masking, approvals via Git.
Track outcomes: MTTR for broken dashboards, time-to-first-insight, adoption rate, and cost per query.
Start with one domain, ship in 90 days, and expand—avoid platform “big bang” rewrites.

Implementation checklist

Pick one business domain for the pilot and define 3–5 critical metrics.
Write data SLOs for freshness, completeness, and accuracy with budgets and paging thresholds.
Stand up a medallion (Bronze/Silver/Gold) model and a semantic layer for definitions.
Automate quality tests (schema, not-null, referential integrity, distribution) in CI/CD.
Enable lineage and observability across ingestion → transform → BI.
Implement SSO, RBAC, RLS/CLS, and PII masking with policy-as-code.
Create a certified data mart and migrate 3–5 high-impact dashboards.
Measure adoption, MTTR, and cost. Iterate with a weekly reliability review.

Questions we hear from teams

How do we keep metric definitions consistent across tools?: Adopt a semantic layer (`dbt metrics`, `LookML`, or `Cube`) and force certified dashboards to query it. Version metric definitions in Git, require PR reviews, and auto‑generate docs. Block direct joins to raw tables for certified content.
What’s the fastest way to add data quality without a platform rewrite?: Start by tagging your top 10 Gold tables and add `dbt` tests for not‑null, unique keys, and referential integrity. Wire failures to Slack/PagerDuty. Then add `Great Expectations`/`Soda` for distribution checks and `OpenLineage` for blast‑radius analysis.
Should we go streaming or stay batch for self‑service BI?: Use streaming where freshness SLO or product requirements demand it (fraud, ops). Most BI can run on micro‑batch (5–15 min) with incremental models and still meet SLOs at lower cost. Don’t over‑engineer Kafka because it’s trendy.
How do we prevent analysts from creating expensive, fragile dashboards?: Give them certified marts and semantic models with sample data by default, enforce RLS/CLS and budgets, and disable direct access to raw layers. Provide office hours and lint their queries via data review PRs.
Can we let LLMs query the warehouse safely?: Only through the semantic layer with strict scopes and guardrails (whitelisted metrics, row limits, read replicas). Log prompts/queries, add cost caps, and never let an LLM improvise joins on Bronze data.

Ready to modernize your codebase?

Let GitPlumbers help you transform AI-generated chaos into clean, scalable applications.

Talk to an engineer See how we build reliable data platforms

Related resources

The Lineage System That Turned 3‑Hour Fire Drills Into 15‑Minute FixesReal-world, battle-tested approach to data lineage that actually helps you fix incidents, ship with confidence, and prove business value. We cover architecture, instrumentation, and workflows using OpenLineage, Airflow, dbt, Databricks/Spark, Marquez/Atlas/DataHub, and quality tooling. Expect concrete steps, code-level detail, and measurable outcomes (MTTR, data downtime, and SLOs).