@lavanya I don't understand the question. What should Metabase (the program) do in case of data breaches?
That's up to you to secure the self-hosted Metabase instance your servers and in case of data breaches, then you might need to report that to authorities depending on the laws of your country.
From my understanding, When we connect our database to the metabase, the data is visible. Do you actually have our data here, because we do not provide customers data to external parties.
One more question is, What if breach happens and data gets corrupted?
@lavanya Again, Metabase (the company) have absolutely zero control over your setup and cannot take any "actions". And as for "corrupted", well, then you have given too many privileges to Metabase and forgotten to make backups.
I'm guessing that you are using the free open source version of MySQL - did you ask similar questions to them (Oracle, the company)?
The answer from them, if they provided one, would be similar: you're running MySQL self-hosted and have to secure it correctly and make backups.