- Notifications
You must be signed in to change notification settings - Fork81
Secure Vault for Customer PII/PHI/PCI/KYC Records
License
NotificationsYou must be signed in to change notification settings
securitybunker/databunker
Folders and files
| Name | Name | Last commit message | Last commit date | |
|---|---|---|---|---|
Repository files navigation
Databunker is a self-hosted, GDPR compliant, secure database for personal records - PII/PHI/KYC:https://databunker.org/
# Pull and run Databunker containerdocker pull securitybunker/databunkerdocker run -p 3000:3000 -d --rm --name dbunker securitybunker/databunker demo# Create user recordscurl -s http://localhost:3000/v1/user -X POST \ -H"X-Bunker-Token: DEMO" \ -H"Content-Type: application/json" \ -d'{"first":"John","last":"Doe","login":"john","email":"user@gmail.com"}'# Get user by login, email, phone, or tokencurl -s -H"X-Bunker-Token: DEMO" -X GET http://localhost:3000/v1/user/login/john# Admin UI: http://localhost:3000
Prevents Data Breaches
- Eliminates SQL injection vulnerabilities
- Protects against GraphQL data exposure
- Segregates sensitive data from your main database
Simplifies Compliance
- GDPR, CCPA, HIPAA ready out of the box
- Built-in consent management
- Automated data minimization
- Full audit trail of all operations
Reduces Development Time
- Simple REST API for all operations
- SDK available for popular languages
- Drop-in replacement for your user table
- Built-in session management
Projectdemo is available at:https://databunker.org/doc/demo/.
Please add astar if you like our project.
- Encrypted Storage: All personal records are encrypted using AES-256
- Secure API: REST API with strong authentication
- Tokenization: Replace sensitive data with tokens in your main database
- Access Control: Fine-grained permissions and audit logging
- Data Segregation: Physical separation from your application database
// Node.js Exampleconst{ Databunker}=require('databunker-sdk');constdb=newDatabunker({url:'http://localhost:3000',token:'DEMO'});// Store user recordawaitdb.users.create({email:'user@example.com',name:'John Doe',phone:'+1-415-555-0123'});// Retrieve user by emailconstuser=awaitdb.users.findByEmail('user@example.com');
- User Profile Storage: Secure storage for user personal data
- Healthcare Records: HIPAA-compliant patient data storage
- Financial Services: PCI DSS compliant customer records
- Identity Management: Secure user authentication and session storage
- GDPR Compliance: Built-in tools for data privacy regulations
- Full encryption capabilities
- MySQL/PostgreSQL support
- Basic audit logging
- MIT license
- Multi-tenancy support
- Advanced monitoring
- Priority support
- Custom deployment options
- Aurora PostgreSQL auto-scaling
- Written in Go for high performance
- Supports MySQL and PostgreSQL
- REST API with OpenAPI specification
- Containerized deployment
- Horizontal scaling support
- Automated backups
- High availability options
- GDPR compliance and Databunker introduction videohttps://www.youtube.com/watch?v=QESOuL3LMj0
- https://oppetmoln.se/20220223/databunker-en-oppen-losning-for-gdpr-saker-lagring-av-kundinformation/
- https://www.freecodecamp.org/news/how-to-stay-gdpr-compliant-with-access-logs/
- https://news.ycombinator.com/item?id=26690279
- https://hackernoon.com/data-leak-prevention-with-databunker-xnn33u9
- https://anchor.fm/techandmain/episodes/Huawei--Microsoft-and-DataBunker--Yuli-Stremovsky-evl385
- https://nocomplexity.com/documents/simplifyprivacy/databunker.html
- https://ipv6.rs/tutorial/FreeBSD_Latest/Databunker/
- https://selfhostedworld.com/software/databunker
- https://ipv6.rs/tutorial/Void_Linux/Databunker/
- https://slashdot.org/software/p/Databunker/
- https://github.com/expressjs/session
- https://stackshare.io/databunker
- https://dbweekly.com/issues/348
- https://databunker.org/
- Right of access
- Right to restrict processing / Consent withdrawal
- Right to be forgotten
- Right to rectification
- Right to data portability
Detailed information can be found athttps://databunker.org/use-case/
- A perfect backend for a KYC system for a crypto startup
- Temporary record identities for secure data exchange
- Audit trail and tracing customer profile changes
- Critical Data Segregation: Implementation Guide
- Continuous Data Protection for PII/PHI records
- Custom Privacy-Enhancing Technology - PET
- User rights and privacy controls
- PII/PHI storage and tokenization
- Automatic log retention policy
- Privacy by Design Compliance
- Simplify user login backend
- Consent Management Platform
- Personal Data minimization
- Secure session storage
- GDPR request workflow
- DPO Management Portal
- User privacy portal
- ISO27001 Compliance
- HIPAA Compliance
- GDPR Compliance
- SOC2 Compliance
- Pseudonymization
- Passport.js support
Help us to raise awareness. Please add a ⭐star and share this project with your friends.