×
Community Blog Sensitive Data Discovery and Protection: An All-In-One Data Security Solution

Sensitive Data Discovery and Protection: An All-In-One Data Security Solution

In this article, we will show you the benefits and scenarios of Sensitive Data Discovery and Protection.

What is Sensitive Data Discovery and Protection?

Based on the compliance requirements on personal information protection and security audit in cloud computing, as specified in Baseline for Classified Protection of Cybersecurity 2.0, Sensitive Data Discovery and Protection (SDDP) provides features such as sensitive data detection and de-identification. Based on all these data security features, SDDP provides an integrated data security solution.

Sensitive data exists in your data assets in different forms and includes data of high value, such as customer information, technical documentation, and personal information. The leaks of sensitive data can cause serious economic and brand losses to your enterprise.

Sensitive Data Discovery and Protection (SDDP) scans your data in MaxCompute, Object Storage Service (OSS), self-managed databases, and Alibaba Cloud database services, including ApsaraDB RDS, DRDS, PolarDB, ApsaraDB for OceanBase, and Tablestore, based on the predefined key fields of sensitive data. Sensitive Data Discovery and Protection (SDDP) determines whether data is sensitive based on the number of times that the data hits sensitive data detection rules.

Why Use Sensitive Data Discovery and Protection?

Sensitive Data Discovery and Protection (SDDP) can scan a large amount of data for sensitive data to help you obtain the security status of your data assets in real-time.

Compliant

Sensitive Data Discovery and Protection (SDDP) helps you meet compliance requirements on personal information protection and security audit in cloud computing, as specified in Baseline for Classified Protection of Cybersecurity 2.0.

Cloud-native

Sensitive Data Discovery and Protection (SDDP) fully leverage its advantages as a cloud-native service and integrates with a variety of data assets on the cloud to provide integrated data protection and defence services. SDDP supports the most common cloud data storage services for both structured and unstructured data, such as Object Storage Service (OSS), ApsaraDB RDS, DRDS, PolarDB, Tablestore, MaxCompute, and self-managed databases hosted on Elastic Compute Service (ECS).

Intelligent

Sensitive Data Discovery and Protection (SDDP) uses big data technologies, machine learning, and intelligent algorithms to detect and monitor sensitive data, high-risk activities such as anomalous data access, and potential data leaks. In addition, SDDP provides suggestions on how to resolve detected issues.

Visualized

Sensitive Data Discovery and Protection (SDDP) visualizes the results of sensitive data detection. This allows an enterprise to obtain a clear view of the security status of its data assets. SDDP allows you to dynamically display and query data assets in a visualized way. You can find sensitive data in a large amount of data with a few clicks.

Where to Use Sensitive Data Discovery and Protection?

Sensitive Data Discovery and Protection (SDDP) classifies and de-identifies sensitive data to help you precisely detect and protect sensitive data.

Detect sensitive data and mark it with risk levels

Sensitive Data Discovery and Protection (SDDP) can detect sensitive data in a large amount of data and accurately distinguish sensitive data from non-sensitive data. SDDP scans your structured and unstructured data assets for sensitive data based on the built-in algorithms and custom sensitive data detection rules. SDDP classifies the sensitive data that is detected and marks it with risk levels for further protection, such as fine-grained access control and storage encryption.

Detect data leaks to protect data

Sensitive Data Discovery and Protection (SDDP) uses an intelligent detection model to analyze access of Alibaba Cloud accounts or external users to sensitive data. If anomalous access is detected, SDDP sends alerts to your data security team.

De-identify sensitive data

Sensitive Data Discovery and Protection (SDDP) supports built-in and custom de-identification algorithms. You can use these algorithms to de-identify sensitive data that is obtained from the production environment before you transfer the sensitive data to other environments such as the development or test environment. SDDP ensures that de-identified sensitive data is usable in other environments.

Comply with the requirements on personal information protection

Sensitive Data Discovery and Protection (SDDP) can accurately distinguish personal data from other data and protect personal data to prevent compliance issues.

Meet GDPR requirements

Sensitive Data Discovery and Protection (SDDP) can detect sensitive data in a large amount of data and allows you to audit the use of sensitive data. This allows you to meet the General Data Protection Regulation (GDPR) requirements for sensitive data protection.

Check data security compliance

In response to the requirements of relevant supervision departments for checking data security compliance, SDDP provides features regarding data security to help you achieve data security compliance. The features include sensitive data classification, data leak detection, and data de-identification.

Related Product

Sensitive Data Discovery and Protection

An all-in-one data security solution that provides various features, such as sensitive data detection, classification, grading, and de-identification, to help you meet compliance requirements specified in General Data Protection Regulation (GDPR) and personal information protection.

Related Blog

Why All Businesses Should Adopt a Cloud Data Loss Prevent System

To learn more about the features and benefits of adopting a Cloud Data Loss Prevention system such as SDDP, download the Manage and Protect Your Critical Data in the Cloud whitepaper here.

As a vital organizational asset, the cloud is a super flexible platform that offers many benefits such as scalability, lower IT costs, business continuity and security. While many organizations utilize an on-premises Data Loss Prevention (DLP) system to manage and protect their critical data, some overlook the need to mirror the same tool in the cloud.

0 0 0
Share on

Alibaba Clouder

2,599 posts | 763 followers

You may also like

Alibaba Clouder

2,599 posts | 763 followers

Related Products