Customer profile storage and tokenization

Databunker is basically a special encrypted database for customer profile records, or PII in terms of GDPR.

Upon an API request to create a new user, request parameters provide customer details in HTML POST key/value format or as JSON format, Databunker performs the following operations:

  • Request sanity check and access token check.
  • Normalize email address, phone number, login name.
  • Strict user schema checks if the schema is defined in configuration and returns an error if some fields are missing or error.
  • Encrypt email address, phone number, login name.
  • Validate for duplicate records using encrypted keys (email, phone, login) and return a duplicate user error message.
  • Generate a record UUID to be used as a user token.
  • Encrypt the whole user record and save it in backend database already encrypted (MySQL, PostgreSQL, SQLite)
  • Return user token (UUID generated previously) to your backend service.

Now, when Databunker returns your a customer token or a user token, you can use it with your existing database instead of storing personal records (PII).

This customer token is basically a user pseudonymised identity.

Pseudonymized identity

Afterword, you can query the Databunker service using user token to receive personal information, saving the audit trail. You can also perform user lookup using email address, login name, or phone number. Databunker knows to automatically extract these values from user profile and built a secure index for quick lookup.

Databunker Live demo

Live demo URL:

You can use the following credentials:

  • User phone: 4444
  • User access code: 4444
  • Admin token: DEMO

Getting Started

The easiest way to get started with Databunker is to run it as a Docker container:

docker run -p 3000:3000 -d --rm --name dbunker securitybunker/databunker demo

This command starts Databunker in a local container with a DEMO root access key. You can use it for the development or testing purposes. For a production installation, follow this installation guide.

Connecting to Databunker

You can interact with Databunker using:

Create a user record

curl -s http://localhost:3000/v1/user -X POST -H "X-Bunker-Token: DEMO" \
  -H "Content-Type: application/json" \
  -d '{"first":"John","last":"Doe","login":"john","phone":"4444","email":""}'

Fetch user record by email

curl -s -H "X-Bunker-Token: DEMO" -X GET http://localhost:3000/v1/user/email/

Fetch user record by login

curl -s -H "X-Bunker-Token: DEMO" -X GET http://localhost:3000/v1/user/login/john

Other commands:

For a full list of commands, follow the API document.

Support / Contact

Slack Channel