Sensitive Data Discovery

Immuta’s sensitive data discovery reduces risk from tedious, manual processes by automatically classifying and tagging direct, indirect and sensitive identifiers for efficient human inspection.

Request a Demo

Automatically Detect Sensitive Data

Immuta’s sensitive data detection feature automates the discovery and classification of sensitive attributes across your data platform, helping to save time and eliminate risk from manual errors. After registering data sources with Immuta, data teams can automatically classify and tag direct, indirect and sensitive identifiers.

Flexible Tagging for all Rules & Regs

Once sensitive data has been identified, it must be tagged to enable efficient and compliant access control policies. Immuta makes it easy to automate tagging of sensitive fields (such as PII or PHI) as well as create your own tags for company-specific data. You can also map tags to data privacy protection laws such as CCPA, HIPAA, GDPR and COPPA to ensure compliance with these regulations without creating separate data copies or views.

Certification Workflow

Compliance and governance teams often need to certify that sensitive data has been identified and tagged. Immuta brings data engineering and compliance teams together through certification workflows that enable human inspection of automated discovery and tagging. Data engineers can capture official approvals that tagged and labeled fields are sufficient to ensure compliance with internal and external rules and regulations.

Ready to get started?

Request a Demo Start a Trial

Frequently Asked Questions

  • How do you identify sensitive data?

    When new data is introduced into a database, pre-set tags enable automated sensitive data discovery. As data is exposed through Immuta, our sensitive data detection feature automatically identifies and classifies sensitive data contained in columns as tags. Immuta governance users can then quickly and easily build global, automated privacy policies using these sensitive data tags – without writing a single line of code. They can also combine tags from existing metadata libraries with new tags detected by Immuta, creating a tag superset for building comprehensive rules for privacy protection and more.
  • What defines sensitive data?

    Sensitive data is any data that needs to be protected against unauthorized access. If unintentionally exposed, sensitive data may have significant legal and/or ethical ramifications for both the data owner and the data subject. Data teams are compelled to protect sensitive data using data governance tools to appropriately permit or restrict data use, and to safeguard it from internal and external leaks and breaches.
  • What are common types of sensitive data?

    The most well-known forms of sensitive data are personally identifiable information (PII) and personal health information (PHI), both of which are protected under HIPAA. However, sensitive data can also include confidential corporate information, credit card information, username and password combinations, attorney-client data, IP information, trade secrets, export-controlled research and even personal calendars, among others. Data teams should work with legal and compliance teams to understand how to achieve compliance with federal regulations, as well as industry standards, employment clauses and contractual agreements.