Tokenization is the process of turning sensitive data into nonsensitive data called “tokens” that can be used in a database or internal system.
The most known use-case of tokenization is the tokenization of credit card numbers.
In classical tokenization service, only one value is turned into a token. For example, if you have a user email address, social security number, and a credit card you will have 3 tokens. One token for email, one for SSN, and one for a credit card.
Unlike classical tokenization service, Databunker gets the whole user profile and generates a unique user token. Databunker stores user JSON profiles in an encrypted format. Databunker builds a secure and quick search index to lookup user records for example by email address. This search index is also hashed on the disk. As a result, no personal data is saved in clear text in the Databunker backend database.
According to GDPR Article 32:
The controller and the processor shall implement appropriate technical and organizational measures to ensure a level of security appropriate to the risk including the pseudonymization and encryption of personal data.
GDPR defines pseudonymization as:
‘pseudonymization’ means the processing of personal data in such a manner that the personal data can no longer be attributed to a specific data subject without the use of additional information, provided that such additional information is kept separately and is subject to technical and organizational measures to ensure that the personal data are not attributed to an identified or identifiable natural person.
Databunker complies with the definition of pseudonymization. User personal data is encrypted and stored separately from the application database.
When saving a user object in Databunker you are getting a user token. This user token is a user pseudonymised identity.
So, now when performing a cross-border transfer or saving application logs, change user identity (email, name, etc…) with a Databunker user token.
This way you make the user not identifiable directly. This method is compatible with Schrems II.
According to “The GDPR made simple(r) for SMEs” book, published in 2021:
To comply with Data Protection by Design (DPbD) and Data Protection by Default (DPbDf), a company may consider implementing Privacy Enhancing Technologies (PETs).
PETs encompass a wide range of solutions, incorporating both traditional data security technologies (e.g. anonymization, encryption cryptography, for personal data both being stored or moved) and other tools aimed at a more general strengthening of data protection: for example, antitracking tools for web browsing, dashboards and other user interfaces for the management of consent can be considered, as well as tools that enable data subjects to audit the enforcement of the data protection policy of a controller or to customize the terms and conditions of privacy policies.
Databunker stands most requirements for Privacy Enhancing Technology. Databunker can serve as a cornerstone for your privacy by design compliance.
Databunker is a special encrypted database for sensitive personal records or Personally Identifiable Information (PII) in terms of GDPR.
Upon an API request to create a new user record, Databunker performs the following operations:
Now, when Databunker returns a user token, you can store it in your existing database instead of storing personal records in clear text (PII).
This customer token is basically a user pseudonymised identity.
Afterward, you can query the Databunker service using the user token to receive user personal data, saving the audit trail. You can also perform user record lookup using the email address, login name, or phone number.
Upon user record creation request, Databunker knows to extract user email, phone, login name, and build an encrypted search index.
Databunker product gives your customers passwordless access to the Databunker user privacy portal. Upon login attempt, the product sends your customer a one-time access code. This code is sent by SMS or email.
Databunker gives the user temporary access to view his data, initiate personal information change (data rectification request), start the forget-me operation, manage privacy agreements, or view audit events.
Upon any user action (depending on configuration), Databunker sends a notification email to Data Privacy Officer (DPO).
DPO can use Databunker to approve or reject user requests. For example, DPO can approve user forget-me requests.
Using the Databunker management portal, DPO or Data Privacy Officer can view all user requests, configure processing operations, and view audit events.
When creating web applications sometimes you need to save data in a session object. This data can include user email address, user permissions, last operation code, error messages. A session can be defined as server-side storage of information that is desired to persist throughout the user’s interaction with the website or web application.
Some of the information stored in the session is considered Personally Identifiable Information. In short, PII, as defined by GDPR.
GDPR stands on a number of principles. Integrity and confidentiality are some of them. These principles tell that appropriate security measures should be in place to protect personal data.
Databunker has an API for secure storage on session objects inside Databunker’s encrypted store. Node.js modules and examples provided:
To comply with privacy regulations customer records must be encrypted.
Old style solution
"Select *" will return data in clear text even if you use database encryption. The data is encrypted only on disk. In the case of SQL Injection, the attacker will copy all your private data.
"Select *" on backend SQL will return encrypted data. Personal data can be fetched only by using Databunker API after passing numerous security checks.
1. Node.js example implementing passwordless login using Databunker: https://github.com/securitybunker/databunker-nodejs-passwordless-login
2. Node.js example with Passport.js, Magic.Link and Databunker: https://github.com/securitybunker/databunker-nodejs-example
3. Secure Session Storage for Node.js apps: https://databunker.org/use-case/secure-session-storage/
Databunker will help you to comply with the following GDPR user rights
Right to be informed
Right of access
Right to rectification
Right to erasure
Right to restrict processing
Right of data portability
Right related to automated decision making including profiling
Right to object
A special service to store personal data.
With big data comes big responsibilities.