Skip to content

Sensitive Data Detection

Audience: Data Owners and Data Governors

Content Summary: To help users identify sensitive data and to enhance the power of Global Policies, Immuta offers External Sensitive Data Detection and Internal Sensitive Data Detection. This page will describe these options with the benefits.

License-Driven Feature

External Sensitive Data Detection is a license-driven feature that must be added for you before it is available in your Immuta instance.

Feature Demo: Sensitive Data Detection

External Sensitive Data Detection

When enabled on the App Settings page, this feature uses third party services to automatically identify and tag columns that contain sensitive data (PII, PHI, etc.) when the data source is created; this detection is based on an extremely small randomized sampling of underlying data that is encrypted in transit, used only for entity prediction, and remains confidential and managed by Immuta, subject to the same guarantees reviewed and agreed to in our license agreement.

During the fingerprint process External Sensitive Data Detection divides the classification of the data into specific tags:

Immuta Discovered tags

Discovered

  • Country

    List of Specific Countries

    Country

    • Argentina
      • Australia
      • Belgium
      • Brazil
      • Canada
      • Chile
      • China
      • Colombia
      • Denmark
      • Finland
      • France
      • Germany
      • Hong Kong
      • India
      • Indonesia
      • Japan
      • Korea
      • Mexico
      • Netherlands
      • Norway
      • Paraguay
      • Peru
      • Poland
      • Singapore
      • Spain
      • Sweden
      • Taiwan
      • Thailand
      • Turkey
      • UK
      • Uruguay
      • US
      • Venezuela
  • Entity

    List of Entities

    Entity

    • Aadhaar Individual
      • Adoption Taxpayer ID Number
      • Age
      • Bank Account
      • Bankers CUSIP ID
      • Bank Routing MICR
      • British Columbia Health Network Number
      • BSN Number
      • CDC Number
      • CDI Number
      • CIC Number
      • CNI Number
      • CPF Number
      • CPR Number
      • Credit Card Number
      • CURP Number
      • Date
      • Data of Birth
      • DEA Number
      • DNI Number
      • Domain Name
      • Drivers License Number
      • Electronic Mail Address
      • Employer ID Number
      • Ethnic Group
      • FDA Code
      • Gender
      • GST Individual
      • Healthcare NPI
      • IBAN Code
      • ICD10 Code
      • ICD9 Code
      • Identity Card Number
      • ID Number
      • IMEI
      • Individual Number
      • Individual Taxpayer ID Number
      • IP Address
      • Location
      • MAC Address
      • MAC Address Local
      • Medicare Number
      • National Health Service Number
      • National ID Card Number
      • National ID Number
      • National Insurance Number
      • National Registration ID Number
      • NIE Number
      • NIF Number
      • NIK Number
      • NI Number
      • NIR
      • Ontario Health Insurance Bumber
      • PAN Individual
      • Passport
      • Person Name
      • PESEL Number
      • Postal Code
      • Preparer Taxpayer ID Number
      • Quebec Health Insurance Number
      • Resident ID Number
      • RRN
      • Social Insurance Number
      • Social Security Number
      • State
      • Swift Code
      • Tax File Number
      • Taxpayer ID Number
      • Taxpayer Reference
      • Telephone Number
      • Tollfree Telephone Number
      • URL
      • Vehicle Identifier or Serial Number
  • Identifier Direct

  • Identifier Indirect

  • Identifier Undetermined

  • PCI

  • PHI

  • PII

The Immuta application is pre-configured with these tags that the service can return so that they can be used to write Global Policies before data sources even exist. Consequently, sensitive data is tagged and appropriate policies are enforced immediately upon data source creation.

Only Application Admins have the option to enable External Sensitive Data Detection on the App Settings page. However, users can disable auto-tagging on a data-source-by-data-source basis, and Governors can disable any unwanted “Discovered” tags in the Immuta application to prevent them from being used and auto-detected in the future.

Internal Sensitive Data Detection

When enabled on the App Settings page, this feature automatically identifies and tags columns that contain sensitive data (PII, PHI, etc.) when the data source is created; this detection is based on a small sample of underlying data, which remains in the users' network.

During the fingerprint process Internal Sensitive Data Detection divides the classification of the data into specific tags: Immuta “Discovered” tags.

The Immuta application is pre-configured with a set of these tags so that they can be used to write Global Policies before data sources even exist. Consequently, sensitive data is tagged and appropriate policies are enforced immediately upon data source creation.

Unlike External Sensitive Data Detection, users do not need a license to enable it. However, only Application Admins have the option to enable Internal Sensitive Data Detection on the App Settings page. However, users can disable auto-tagging on a data-source-by-data-source basis, and Governors can disable any unwanted “Discovered” tags in the Immuta application to prevent them from being used and auto-detected in the future.