Secure PII Database: Protect Customer Records in Under 10 Minutes

Databunker is a lighting-fast, open-source service developed in Go for secure storage of sensitive personal records. Protect user records from SQL and GraphQL injections with a simple API. Streamline GDPR, HIPAA, ISO 27001, and SOC2 compliance.

Book a Demo View Docs

How to implement customer PII storage and tokenization with Databunker

As developers, safeguarding sensitive customer data and Personally Identifiable Information (PII) is a critical responsibility. Databunker, an open-source encrypted database, offers a robust solution for securely storing and tokenizing customer profiles. In this comprehensive guide, we will walk you through the steps to implement customer profile storage and tokenization with Databunker, ensuring data security, privacy, and compliance.

Understanding Databunker:

Databunker is a powerful encrypted vault designed to store sensitive personal records and PII. Its flexible API empowers developers to build privacy-centric applications while comply to strict data protection and privacy standards.

Upon an API request to create a new user, Databunker performs the following operations:

  • Sanity Check and Access Token Verification: Databunker performs a sanity check on the request and verifies the access token to ensure secure access.
  • Data Normalization: Databunker normalizes critical customer details like email address, phone number, and login name to ensure consistency and accuracy.
  • User Schema Validation: If a user schema is defined in the configuration, Databunker strictly validates the incoming data against the schema, identifying any missing or erroneous fields.
  • Data Encryption: Databunker employs strong encryption to safeguard sensitive data like email address, phone number, and login name.
  • Duplicate Record Check: Using encrypted keys (email, phone, login), Databunker validates for duplicate user records and returns an error message if any are found.
  • User Token Generation: Databunker generates a unique UUID as a user token, pseudonymizing the user’s identity.
  • Encrypted Storage: The entire user record, including personal information, is encrypted and securely stored in the backend database (e.g., MySQL, PostgreSQL, SQLite).
  • Customer Token Usage: Instead of storing personal records or PII, your backend service receives and uses the customer token (UUID) returned by Databunker for future interactions.

The Power of Customer Tokens:

The customer token acts as a pseudonymized identity, providing a secure and privacy-enhancing solution for handling customer data. By using this token with your existing database, you avoid storing sensitive personal records directly, ensuring enhanced data security.

Pseudonymized identity

Retrieving Personal Information and Auditing:

With the user token, you can query the Databunker service to retrieve personal information while maintaining a robust audit trail.

🚀 Databunker:

Secure Database for PII/PHI/PCI/KYC Data

(Open source / MIT license)

- Check out the getting started guide

- View the source code

🤝 Need help filling out security RFPs?

Need help with security challenges or filling out RFPs? Get personalized, 1-on-1 advice from our experts.

Book a call now for in-depth discussion.

Book a call