{"id":13561212,"url":"https://github.com/securitybunker/databunker","last_synced_at":"2025-05-14T15:05:58.351Z","repository":{"id":39534027,"uuid":"226737538","full_name":"securitybunker/databunker","owner":"securitybunker","description":"Secure Vault for Customer PII/PHI/PCI/KYC Records","archived":false,"fork":false,"pushed_at":"2025-05-03T18:41:52.000Z","size":11616,"stargazers_count":1298,"open_issues_count":8,"forks_count":82,"subscribers_count":33,"default_branch":"master","last_synced_at":"2025-05-13T11:02:52.927Z","etag":null,"topics":["anonymization","application-server","ccpa","compliance","data-anonymization","data-protection","database","encryption","gdpr","legaltech","passportjs","pii","piidata","privacy","privacy-by-design","secure-storage","security","tokenization","user-consent","vault"],"latest_commit_sha":null,"homepage":"https://databunker.org/","language":"Go","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/securitybunker.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null}},"created_at":"2019-12-08T21:55:55.000Z","updated_at":"2025-05-13T07:22:16.000Z","dependencies_parsed_at":"2023-12-20T19:29:15.787Z","dependency_job_id":"232ced40-b3c1-4535-97e3-a794543118f1","html_url":"https://github.com/securitybunker/databunker","commit_stats":{"total_commits":999,"total_committers":10,"mean_commits":99.9,"dds":0.1871871871871872,"last_synced_commit":"09f9cc236621d68b3ce68b9bb02b291249054e52"},"previous_names":["paranoidguy/databunker"],"tags_count":0,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/securitybunker%2Fdatabunker","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/securitybunker%2Fdatabunker/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/securitybunker%2Fdatabunker/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/securitybunker%2Fdatabunker/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/securitybunker","download_url":"https://codeload.github.com/securitybunker/databunker/tar.gz/refs/heads/master","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":254168986,"owners_count":22026207,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["anonymization","application-server","ccpa","compliance","data-anonymization","data-protection","database","encryption","gdpr","legaltech","passportjs","pii","piidata","privacy","privacy-by-design","secure-storage","security","tokenization","user-consent","vault"],"created_at":"2024-08-01T13:00:53.782Z","updated_at":"2025-05-14T15:05:58.327Z","avatar_url":"https://github.com/securitybunker.png","language":"Go","funding_links":[],"categories":["Go","security","Security","Uncategorized","Database","Generators","Privacy"],"sub_categories":["Zabbix","Databases Implemented in Go","Professional Privacy"],"readme":"![Databunker solution](images/databunker-solution.png)\n\n# Databunker\n\n**Databunker is a self-hosted, GDPR compliant, secure database for personal records - PII/PHI/KYC: https://databunker.org/**\n\n\u003cdiv align=\"center\"\u003e\n \u003cp\u003e\n  \u003ca href=\"https://github.com/securitybunker/databunker/stargazers\" target=\"_blank\"\u003e\u003cimg src=\"https://img.shields.io/github/stars/securitybunker/databunker.svg?logo=github\u0026maxAge=86400\" alt=\"Stars\" /\u003e\u003c/a\u003e\n  \u003ca href=\"https://github.com/securitybunker/databunker/actions?query=workflow%3ATests\" target=\"_blank\"\u003e\u003cimg src=\"https://github.com/securitybunker/databunker/workflows/Tests/badge.svg\" alt=\"Tests\" /\u003e\u003c/a\u003e\n  \u003ca href=\"https://hub.docker.com/r/securitybunker/databunker\"\u003e\u003cimg src=\"https://img.shields.io/docker/pulls/securitybunker/databunker?color=f02e65\u0026style=flat-square\" /\u003e\u003c/a\u003e\n \u003c/p\u003e\n \u003cp\u003e\n  \u003ca href=\"https://github.com/securitybunker/databunker-store\"\u003e\u003cimg src=\"https://nodei.co/npm/@databunker/store.png?mini=true\" alt=\"npm install @databunker/store\" /\u003e\u003c/a\u003e\n  \u003ca href=\"https://github.com/securitybunker/databunker-session-store\"\u003e\u003cimg src=\"https://nodei.co/npm/@databunker/session-store.png?mini=true\" alt=\"npm install @databunker/session-store\" /\u003e\u003c/a\u003e\n \u003c/p\u003e\n\u003c/div\u003e\n\n## 🚀 Quick Start (5 minutes)\n\n```bash\n# Pull and run Databunker container\ndocker pull securitybunker/databunker\ndocker run -p 3000:3000 -d --rm --name dbunker securitybunker/databunker demo\n\n# Create user records\ncurl -s http://localhost:3000/v1/user -X POST \\\n  -H \"X-Bunker-Token: DEMO\" \\\n  -H \"Content-Type: application/json\" \\\n  -d '{\"first\":\"John\",\"last\":\"Doe\",\"login\":\"john\",\"email\":\"user@gmail.com\"}'\n\n# Get user by login, email, phone, or token\ncurl -s -H \"X-Bunker-Token: DEMO\" -X GET http://localhost:3000/v1/user/login/john\n\n# Admin UI: http://localhost:3000\n```\n\n## 💡 What Problems Does Databunker Solve?\n\n1. **Prevents Data Breaches**\n   - Eliminates SQL injection vulnerabilities\n   - Protects against GraphQL data exposure\n   - Segregates sensitive data from your main database\n\n2. **Simplifies Compliance**\n   - GDPR, CCPA, HIPAA ready out of the box\n   - Built-in consent management\n   - Automated data minimization\n   - Full audit trail of all operations\n\n3. **Reduces Development Time**\n   - Simple REST API for all operations\n   - SDK available for popular languages\n   - Drop-in replacement for your user table\n   - Built-in session management\n\nProject **demo** is available at: https://databunker.org/doc/demo/.\n\nPlease add a **star** if you like our project.\n\n## 🔒 Key Security Features\n\n- **Encrypted Storage**: All personal records are encrypted using AES-256\n- **Secure API**: REST API with strong authentication\n- **Tokenization**: Replace sensitive data with tokens in your main database\n- **Access Control**: Fine-grained permissions and audit logging\n- **Data Segregation**: Physical separation from your application database\n\n## 🔌 Integration Examples\n\n```javascript\n// Node.js Example\nconst { Databunker } = require('databunker-sdk');\nconst db = new Databunker({\n  url: 'http://localhost:3000',\n  token: 'DEMO'\n});\n\n// Store user record\nawait db.users.create({\n  email: 'user@example.com',\n  name: 'John Doe',\n  phone: '+1-415-555-0123'\n});\n\n// Retrieve user by email\nconst user = await db.users.findByEmail('user@example.com');\n```\n\n## 📊 Use Cases\n\n- **User Profile Storage**: Secure storage for user personal data\n- **Healthcare Records**: HIPAA-compliant patient data storage\n- **Financial Services**: PCI DSS compliant customer records\n- **Identity Management**: Secure user authentication and session storage\n- **GDPR Compliance**: Built-in tools for data privacy regulations\n\n## 💻 Available Editions\n\n### Community Edition (Free)\n- Full encryption capabilities\n- MySQL/PostgreSQL support\n- Basic audit logging\n- MIT license\n\n### Enterprise Edition (Startup-friendly pricing)\n- Multi-tenancy support\n- Advanced monitoring\n- Priority support\n- Custom deployment options\n- Aurora PostgreSQL auto-scaling\n\n## 🔧 Technical Specifications\n\n- Written in Go for high performance\n- Supports MySQL and PostgreSQL\n- REST API with OpenAPI specification\n- Containerized deployment\n- Horizontal scaling support\n- Automated backups\n- High availability options\n\n## 📚 Resources\n\n1. GDPR compliance and Databunker introduction video https://www.youtube.com/watch?v=QESOuL3LMj0\n1. https://oppetmoln.se/20220223/databunker-en-oppen-losning-for-gdpr-saker-lagring-av-kundinformation/\n1. https://www.freecodecamp.org/news/how-to-stay-gdpr-compliant-with-access-logs/\n1. https://news.ycombinator.com/item?id=26690279\n1. https://hackernoon.com/data-leak-prevention-with-databunker-xnn33u9\n1. https://anchor.fm/techandmain/episodes/Huawei--Microsoft-and-DataBunker--Yuli-Stremovsky-evl385\n1. https://nocomplexity.com/documents/simplifyprivacy/databunker.html\n1. https://ipv6.rs/tutorial/FreeBSD_Latest/Databunker/\n1. https://selfhostedworld.com/software/databunker\n1. https://ipv6.rs/tutorial/Void_Linux/Databunker/\n1. https://slashdot.org/software/p/Databunker/\n1. https://github.com/expressjs/session\n1. https://stackshare.io/databunker\n1. https://dbweekly.com/issues/348\n1. https://databunker.org/\n\n## 📘 GDPR: Out of the box solution for:\n\n1. [Right of access](#right-of-access)\n1. [Right to restrict processing / Consent withdrawal](#right-to-restrict-processing--consent-withdrawal)\n1. [Right to be forgotten](#right-to-be-forgotten)\n1. [Right to rectification](#right-to-rectification)\n1. [Right to data portability](#right-to-data-portability)\n\n\n## ⚡ Databunker use cases\n\nDetailed information can be found at https://databunker.org/use-case/\n\n* [A perfect backend for a KYC system for a crypto startup](https://databunker.org/success-story/kyc-backend-for-crypto-startup/)\n* [Temporary record identities for secure data exchange](https://databunker.org/use-case/temporary-record-identity/)\n* [Audit trail and tracing customer profile changes](https://databunker.org/use-case/trace-profile-access-change/)\n* [Critical Data Segregation: Implementation Guide](https://databunker.org/use-case/critical-data-segregation/)\n* [Continuous Data Protection for PII/PHI records](https://databunker.org/use-case/continuous-data-protection/)\n* [Custom Privacy-Enhancing Technology - PET](https://databunker.org/use-case/privacy-enhancing-technology/)\n* [User rights and privacy controls](https://databunker.org/use-case/user-privacy-controls/)\n* [PII/PHI storage and tokenization](https://databunker.org/use-case/customer-profile-storage-tokenization/)\n* [Automatic log retention policy](https://databunker.org/use-case/gdpr-compliant-logging/)\n* [Privacy by Design Compliance](https://databunker.org/use-case/privacy-by-design-default/)\n* [Simplify user login backend](https://databunker.org/use-case/simplify-user-login-backend/)\n* [Consent Management Platform](https://databunker.org/use-case/consent-management-platform/)\n* [Personal Data minimization](https://databunker.org/use-case/data-minimization/)\n* [Secure session storage](https://databunker.org/use-case/secure-session-storage/)\n* [GDPR request workflow](https://databunker.org/use-case/gdpr-user-request-workflow/)\n* [DPO Management Portal](https://databunker.org/use-case/dpo-management-portal/)\n* [User privacy portal](https://databunker.org/use-case/privacy-portal-for-customers/)\n* [ISO27001 Compliance](https://databunker.org/use-case/iso27001-compliance/)\n* [HIPAA Compliance](https://databunker.org/use-case/hipaa-compliance/)\n* [GDPR Compliance](https://databunker.org/use-case/gdpr-compliance/)\n* [SOC2 Compliance](https://databunker.org/use-case/soc2-compliance/)\n* [Pseudonymization](https://databunker.org/use-case/pseudonymization-vs-anonymization/)\n* Passport.js support\n \n---\n\nHelp us to raise awareness. Please add a ⭐ **star** and share this project with your friends.\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fsecuritybunker%2Fdatabunker","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fsecuritybunker%2Fdatabunker","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fsecuritybunker%2Fdatabunker/lists"}