Simply mask your sensitive data while maintaining its function for testing, development, training and analytics.
DataMasque makes it safe to explore, implement and harness the opportunities that data provides, free from privacy concerns or compromise.
DataMasque gives you a simple way to irreversibly replace sensitive data with realistic alternatives to help simplify compliance and keep your sensitive production data safe and out of your lower environments.
DataMasque maintains the value of production data for testing, development and training without compromising data security.
DataMasque synthetically generates de-identified data that looks and acts like the real data it’s replacing. We take it as a compliment when our clients Dev and Test teams don’t even realise they’re working on synthetic data!
Masking isn’t new, but it can be complex. With DataMasque, we can automatically detect and maintain primary and foreign key relationships and enforce data consistency by applying the same masked data across different tables, databases, files, environments and even organisations.
If the data is dynamically masked or encrypted, it means your sensitive data can be unlocked to its original state. With DataMasque, we remove your PII and replace it with synthetic data that looks just like the original but poses no risk of re-identification. We take full environments out of scope for PCI and Privacy audits.
Removing personally identifiable information from your non-production environments is not just a nice to have, it’s a regulatory requirement globally. Want to adhere to Article 32 of GDPR, HIPAA safe harbor or Data Privacy legislation from California to Australia… you need to have masking strategy.
The only constant is change which is why DataMasque developed a proactive sensitive data alert. This alerts you when there has been a schema change that has been flagged as containing potentially sensitive data. Our sensitive data discovery doesn’t just look for what we think is sensitive, you can upload your own data dictionary for our tool monitor.
DataMasque has been designed with modern enterprise environments in mind. With horizontal scalability, containerised deployment model, and automation API, DataMasque can seamlessly slot into your existing data provisioning process or DevOps pipeline – regardless of whether you’re running on-prem or in a public cloud environment.
On-prem, public cloud, private cloud… it doesn’t matter to us! With DataMasque, you can spin up an instance of DataMasque into any environment (no data leaves your production zone!) and connects to supported data stores without the need of deploying or managing agents at any scale.
By removing the sensitivity of the data but retaining the utility and the fidelity, you can truly leverage your datasets to accelerate your business. Machine learning, analytics and sharing data with third parties becomes possible with a masked data set.
Get in touch and let us know what you’re after.
DataMasque supports the following platforms and data sources.
| Platforms | Version |
|---|---|
Cohesity Marketplace
|
- |
|
AWS Marketplace
|
- |
|
Azure Marketplace
|
- |
| Software Platforms | |
|
Ubuntu
|
18.04 or 20.04 LTS x86 64-bit |
|
Red Hat Enterprise Linux
|
RHEL 8 x86 64-bit |
|
Amazon EKS
|
Kubernetes 1.27-1.29 |
| Databases | |
|
Oracle Database
|
11gR2, 12gR1, 12gR2, 18c, 19c |
|
Microsoft SQL Server
|
2012, 2014, 2016, 2017, 2019 |
|
MariaDB
|
10.11, 11.2 |
|
MySQL
|
5.7, 8 |
|
PostgreSQL
|
9.6, 10, 11, 12, 13, 14, 15 |
|
Amazon Aurora
|
- |
|
Amazon RDS
|
- |
|
Amazon Redshift
|
- |
|
Amazon DynamoDB
|
- |
|
Azure SQL Server
|
- |
| File Masking | |
|
Storage Platforms
|
AWS S3, Azure Blob Storage, NFS and SMB |
|
Tabular
|
CSV (and other character delimited), Fixed Width & Parquet files |
|
Object
|
JSON & XML files |
|
Multi-Record
|
Apache Avro & NDJSON files |
|
Free Trial
30 day trial
|
Cloud
Consumption Get in touch |
Business
Get in touch
|
Enterprise
Get in touch
|
|
|---|---|---|---|---|
| Mask Data Size |
Masque up to 1000 rows per run
|
Up to 3 TB
|
Unlimited
|
Unlimited
|
Data Sources:
|
|
One (1) data source included of any type
|
One (1) data source included of any type
|
All data sources included
|
| RESTful API |
|
|
|
|
| Sensitive Data Discovery |
|
|
|
|
| Compliance Reporting |
|
|
|
|
| Automatic masking ruleset generation |
|
|
|
|
| Parallelism and Multi-processing |
|
|
|
|
| Proactive Data Discovery |
|
|
|
|
| Cross Data Store Consistency |
|
|
|
|
| SSO/SAML |
|
|
|
|
| Role Based Access Control |
|
|
|
|
| Safe Data Exchange |
|
|
|
|
| Masking Templates |
|
|
|
|
| Product Training |
|
|
2 hours
|
2 hours
|
| Support Level |
No Support
|
Email Support
|
Standard
|
Premium
|
DataMasque is a data masking tool that enables you to replace sensitive values in databases with artificial but realistic alternatives while maintaining data integrity. Data masking can enhance testing, development and training by providing realistic and functional data in these scenarios without compromising security, privacy or operational accuracy.
DataMasque currently supports most database and file formats. If we don’t have your database listed in our Support Matrix, please reach out to the team as we have connectors and workarounds for even the most obscure databases.
DataMasque supports the following deployment options:
DataMasque can be accessed using a browser-based web interface, which provides a centralized single-pane-of-glass view of your entire data masking environment. DataMasque also provides a robust set of REST API endpoints, allowing you to easily utilise its various features through automated processes.
DataMasque can discover sensitive data by performing a metadata keyword search to provide you with a starting point for data masking, allowing you to prioritise which data sources to protect. Sensitive data discovery tasks can also be included with every data masking run to identify new sensitive information, providing proactive and ongoing protection.
DataMasque removes sensitive data from your database and replaces it with realistic masked data. By default, masked values are randomly generated, preventing recovery of the original data. When data consistency across tables is required, DataMasque generates masked values using cryptographically secure SHA-512 salted hashes of the original values.
DataMasque provides masking algorithms that generate values based on one or more unmasked column values using a cryptographically secure SHA-512 salted hash. Use of these algorithms ensures deterministic masking across columns, tables, and database engines.
DataMasque supports masking of primary keys and unique keys. DataMasque automatically maintains referential integrity of foreign keys and also allows users to propagate masked values to implied foreign keys.
DataMasque currently provides a REST API for triggering and monitoring masking runs using pre-configured connections and rulesets. We have plans to open more API endpoints in the future.
“DataMasque helps us lower the likelihood of a breach and secures our customers’ data, which means we avoid expensive regulatory fines.”
— Joseph Landucci, Director of Technology Management, Best Western Hotels and Resorts
“The quality of test data has a direct impact on the quality of your applications. Cohesity’s zero-cost instant clones, combined with DataMasque's powerful data masking capability available through the Cohesity Marketplace, enables enterprises to accelerate their application development with high fidelity data without compromising data sovereignty. The DataMasque app helps to reduce your compliance exposure by masking data before being utilized for application development.”
— Ari Paul, Senior Solutions Marketing Manager, Cohesity
Start your free 30- day trial today.
Get the plan that suits
your business needs
Experience the power of
best-of-breed data masking
Request a demo to learn more