Secure Vault for Customer Personal Records in Under 10 Minutes

Databunker is an open-source vault for secure storage of PII, PHI, KYC, and PCI records. Protect user records from SQL and GraphQL injections with a simple API. Streamline GDPR, HIPAA, ISO 27001, and SOC2 compliance.

Live demo  Learn more

docker run -p 3000:3000 -d securitybunker/databunker demo
# save user records
curl -s http://localhost:3000/v1/user -X POST -H "X-Bunker-Token: DEMO" -H "Content-Type: application/json" \
-d '{"first":"John","last":"Doe","login":"john","email":""}'
# user lookup by login, email, phone, or token
curl -s -H "X-Bunker-Token: DEMO" -X GET http://localhost:3000/v1/user/login/john

How to use temporary record identities for secure data exchange

One of the myths of the GDPR is that it prevents data sharing. This isn’t true. The GDPR aims to ensure that there is trust and confidence in how organisations use personal data and ensure that organisations share data securely and fairly.

When sharing data with 3rd party services, such as web analytics, logging, or intelligence platforms, organizations often need to disclose customer identifiers like original IP addresses or email addresses. However, it is essential to minimize the transmission of personally identifiable information (PII) to these external systems.

Do not share your customer user name, IP, emails, etc… because they look nice in reports!

GDPR Compliance: The Need for Adequate and Limited Data Sharing

The GDPR mandates that personal data should be adequate, relevant, and limited to what is necessary for the purposes for which they are processed. Ensuring compliance with this requirement is crucial when sharing data with external parties.

Introducing Databunker: The Swiss Army Knife for Secure Data Storage

We wanted to simplify the way organizations can share data in a secure way. This is one of the reasons we built Databunker. Databunker is an open-source Swiss army knife tool designed to securely store personal records and PII/PHI.

Empowering Secure Data Sharing with Temporary Identity Tokens

Databunker enables organizations to generate time-limited, temporary, and shareable identity tokens for use with 3rd party services. These identity tokens serve as record identifiers, linking back to the customer’s personal record, app record, or specific session.

Optional Additional Information for Enhanced Tracking

Databunker also allows the incorporation of optional additional information, such as partner name identity, to enable effective tracking of record usage.

Ensuring Controlled Access for Partner Organizations

With Databunker, partners can retrieve specific customer information for a limited time and designated fields only. After the specified period, access is automatically blocked, reinforcing data security and compliance.

Introducing a Free Takeaway 🚀

Databunker is a free, open-source project available under the commercially friendly MIT license.

- Check out the getting started guide

- Review the installation guide

- View the source code

🚀 Databunker:

Secure Vault for User PII Data

(Open source / MIT license)

- Check out the getting started guide

- View the source code

🤝 Get 1-to-1 advice and guidance from an expert

Do you have any specific data protection, privacy or security challenges you'd like an expert to help with?

Book a call now for in-depth discussion.

Premium Support for Databunker