Customer profile storage and tokenization

Databunker is basically a special encrypted database for customer profile records, or PII in terms of GDPR.

Upon an API request to create a new user, request parameters provide customer details in HTML POST key/value format or as JSON format, Databunker performs the following operations:

• Request sanity check and access token check.
• Normalize email address, phone number, login name.
• Strict user schema checks if the schema is defined in configuration and returns an error if some fields are missing or error.
• Encrypt email address, phone number, login name.
• Validate for duplicate records using encrypted keys (email, phone, login) and return a duplicate user error message.
• Generate a record UUID to be used as a user token.
• Encrypt the whole user record and save it in backend database already encrypted (MySQL, PostgreSQL, SQLite)
• Return user token (UUID generated previously) to your backend service.

Now, when Databunker returns your customer token, you can use it with your existing database instead of storing personal records (PII).

Afterword, you can query the Databunker service to receive personal information, saving the audit trail.

Product Live demo

The service live demo is available at https://demo.databunker.org/

Demo user credentials:

• User phone: 4444
• User code: 4444
• Admin token: DEMO

Getting Started

The easiest way to get started with Databunker is to run it as a Docker container:

docker run -p 3000:3000 -d --rm --name dbunker securitybunker/databunker demo

This command starts a local container with a DEMO root access key. You can use it for the development or testing purposes. For a production installation, follow this installation guide.

Connecting to Databunker

You can interact with Databunker using:

• Web Console listening on port 3000: localhost:3000
• REST API listening on port 3000: localhost:3000

Create a user record

curl -s http://localhost:3000/v1/user -X POST -H "X-Bunker-Token: DEMO" \
  -H "Content-Type: application/json" \
  -d '{"first":"John","last":"Doe","login":"john","phone":"4444","email":"user@gmail.com"}'

Fetch user record by email

curl -s -H "X-Bunker-Token: DEMO" -X GET http://localhost:3000/v1/user/email/user@gmail.com

Fetch user record by login

curl -s -H "X-Bunker-Token: DEMO" -X GET http://localhost:3000/v1/user/login/john

Other commands:

For a full list of commands, follow the API document.

Support / Contact

Slack Channel