All Projects → securitybunker → Databunker

securitybunker / Databunker

Licence: other
Secure storage for personal records built to comply with GDPR

Programming Languages

31211 projects - #10 most used programming language
3204 projects

Projects that are alternatives of or similar to Databunker

immudb - world’s fastest immutable database, built on a zero trust model
Stars: ✭ 3,743 (+2968.03%)
Mutual labels:  database, gdpr, compliance
Sensitive Data Management: Data Discovery and Anonymization toolkit
Stars: ✭ 79 (-35.25%)
Mutual labels:  gdpr, privacy, compliance
Gdpr Tracker
A crowdsourced directory tracking the compliance and security practices of cloud services and their subprocessors
Stars: ✭ 142 (+16.39%)
Mutual labels:  gdpr, privacy, compliance
A privacy and security engineering toolkit: Discover, understand, pseudonymize, anonymize, encrypt and securely share sensitive and personal data: Privacy and security as code.
Stars: ✭ 70 (-42.62%)
Mutual labels:  encryption, compliance, gdpr
Data Processing Agreements
Collection of Data Processing Agreement (DPA) and GDPR compliance resources
Stars: ✭ 110 (-9.84%)
Mutual labels:  gdpr, privacy, compliance
A common framework enabling companies to work together to protect consumers' privacy and data rights.
Stars: ✭ 295 (+141.8%)
Mutual labels:  gdpr, privacy, compliance
Privacy as Code for DSAR Orchestration: Privacy Request automation to fulfill GDPR, CCPA, and LGPD data subject requests.
Stars: ✭ 32 (-73.77%)
Mutual labels:  privacy, compliance, gdpr
Gdpr Checklist
The GDPR Checklist
Stars: ✭ 655 (+436.89%)
Mutual labels:  gdpr, privacy, compliance
🔥 A powerful MongoDB auditing and pentesting tool 🔥
Stars: ✭ 1,174 (+862.3%)
Mutual labels:  database, encryption
Open Repository for the Open Security and Privacy Reference Architecture
Stars: ✭ 73 (-40.16%)
Mutual labels:  gdpr, privacy
Brandis: End-to-end encryption for everyone
Stars: ✭ 77 (-36.89%)
Mutual labels:  privacy, encryption
Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.
Stars: ✭ 9,137 (+7389.34%)
Mutual labels:  gdpr, compliance
A private decentralized database replicated over Git (or any other distributed log)
Stars: ✭ 61 (-50%)
Mutual labels:  database, encryption
Zero-details, privacy-focused in-app file system.
Stars: ✭ 1,185 (+871.31%)
Mutual labels:  privacy, encryption
opmsg p2p transport network
Stars: ✭ 58 (-52.46%)
Mutual labels:  privacy, encryption
PROJECT MOVED: (GitHub is just a mirror.)
Stars: ✭ 1,019 (+735.25%)
Mutual labels:  privacy, encryption
The best way to backup and restore your database
Stars: ✭ 80 (-34.43%)
Mutual labels:  database, encryption
Private Decentralized Communication Network 🎭 🧅
Stars: ✭ 84 (-31.15%)
Mutual labels:  privacy, encryption
Context aware, pluggable and customizable data protection and anonymization SDK for text and images
Stars: ✭ 1,320 (+981.97%)
Mutual labels:  gdpr, privacy
Anonymous web chat server, built on top of Themis/WebThemis
Stars: ✭ 98 (-19.67%)
Mutual labels:  privacy, encryption

Databunker solution


Databunker is a Personally Identifiable Information (PII) Data Storage Service built to Comply with GDPR and CCPA Privacy Requirements.


Project demo is available at: Please add a star if you like our project.

We live in a world where the privacy of our information is nonexistent. The EU has been working to remediate this fallacy with GDPR, and the US (California) follows with a first sparrow called CCPA.

Data Bunker Project is intended to ease the acceptance of GDPR and CCPA regulations while giving organizations an easy to implement API's, secure Database to store PII, and privacy portal. This will give all of us, the real data owners, control of our data, and allow us to know who is using our data, what is he doing with it, and have the freedom to decide if we agree to that or not.

This project, when deployed correctly, replaces all the customer's personal records (PII) scattered in the organization's different internal databases and log files with a single, randomly generated token managed by the Data Bunker service.

By deploying this project and moving all personal information to one place, you will comply with the following GDPR statement: Personal data should be processed in a manner that ensures appropriate security and confidentiality of the personal data, including for preventing unauthorized access to or use of personal data and the equipment used for the processing.

Diagram of old-style solution.


Diagram of Solution with Paranoid Guy Data Bunker


Other documents: INSTALLATION


Project demo is available at:

You can see management for Natural person (data subject) account access:

Phone: 4444
Code: 4444
Email: [email protected]
Code: 4444

Demo Admin access token: DEMO

Working example with Node.js

Full working example implementing Databunker, Passport.js, and is available here:

Production systems.

Send us a note if you are running Databunker.

This project resolves most** of the GDPR requirements for you including:

NOTE: Implementing this project does not make you fully compliant with GDPR requirements and you still need to consult with an attorney specializing in privacy.

NOTE: When we use the term "Customer" we mean the data of the end-user that his information is being stored, shared, and deleted.

Right of access

Databunker extracts customer email, customer phone values out of the customers' personal records granting passwordless access for the customer into their Databunker personal account. This is done by generating a random access key that Databunker sends to your customer by email or by SMS. Your customer can login and view all the information collected and saved by Databunker in connection to his profile.

login form login with email verify login with code

Right to restrict processing / Consent withdrawal

Databunker can manage all of the customer's consents. A customer can Withdraw consent/restrict processing in his personal account at Databunker. For example, to block newsletter service. Your backend site can work with Databunker using our API to add, or cancel consents and a callback operation will be fired when a customer's action takes place.

Consent management Consent withdrawal

NOTE: Data bunker can call your backend script on a consent withdrawal (callback). You will have to handle these requests and remove the customer records from other 3rd party processing companies. For example: web recording services, email gateways, etc...

Privacy by design

This product, from the architecture level and down to code was built to comply with strict privacy laws such as GDPR and CCPA. Deploying this project can make your architecture privacy by design compliant.

Transparency and Accountability principle

Any system or customer connecting to Databunker must provide an access token to authorize any operation, otherwise, the operation will be aborted. An end customer can login to his profile with a random authorization code sent by email or SMS.

All operations with personal records are saved in the audit log.

Any customer can log in to his account at Data Bunker and view the full audit of activities performed on his profile.

Forget me

Right to be forgotten / Right to erasure

When your customer requests to exercise his right to be forgotten, his private records will be wiped out of the Data Bunker database, giving you the possibility to leave all internal databases intact while not impacting any of your other systems.

Upon customer removal request, Data bunker can call your backend script (callback) with the customer details. You will have to handle these requests and remove other customer records from 3rd party processing companies. For example from web recording services, email gateways, etc...

Forget me

NOTE: You will need to make sure that you do not have any customer identifiable information (PII) in your other databases, logs, files, etc...

Right to rectification/ Data Accuracy

Your customer can log in to his personal account at Data Bunker and change his records, for example, change his Name. Databunker can fire a callback operation with customer's details when a customer action takes place.

Change profile

Right to data portability

Your customer can log in to his personal account at Data Bunker and view and extract all his records stored at Data Bunker.

NOTE: You will need to provide your customers with a way to extract data from other internal databases.

Integrity and confidentiality

All personal data is encrypted. An audit log is written for all operations with personal records. All-access to Data Bunker API is done using an HTTPS SSL certificate. Enterprise version supports Shamir's Secret Sharing algorithm to split the master key into a number of keys. A number of keys (that can be saved in different hands in the organization) are required to bring up the system.


Implementing this project does not make you fully compliant with GDPR requirements and you still need to consult with an attorney specializing in privacy.

Databunker use cases

Detailed information can be found at

  • Personal information tokenization and storage
  • Pseudonymized user identity for cross-border information transfer
  • Personal information consolidation
  • Critical data segregation
  • Trace customer profile changes and access
  • Temporary customer/app/session identity for 3rd party services
  • Data minimization and GDPR Scope reduction
  • Consent management, i.e. withdrawal
  • Encrypted session storage
  • GDPR compliant logging
  • DPO friendly service
  • User privacy portal
  • Passport.js support

Databunker quick start guide

Follow this article.

Contact us

For any questions, you can talk with us at [email protected]

Join the project slack channel to talk with developers:

Note that the project description data, including the texts, logos, images, and/or trademarks, for each open source project belongs to its rightful owner. If you wish to add or remove any projects, please contact us at [email protected].