Sensitive Data Protection documentation
Sensitive Data Protection provides access to a powerful sensitive data inspection, classification, and de-identification platform.
Sensitive Data Protection includes:
- Over 200 built-in information type (or "infoType") detectors.
- The ability to define custom infoType detectors using dictionaries, regular expressions, and contextual elements.
- De-identification techniques including redaction, masking, format-preserving encryption, date-shifting, and more.
- The ability to detect sensitive data within streams of data, structured text, files in storage repositories such as Cloud Storage and BigQuery, and even within images.
- Analysis of structured data to help understand its risk of being re-identified, including computation of metrics like k-anonymity, l-diversity, and more.
- The ability to automatically discover unencrypted secrets and profile data across an organization, folder, or project to identify data assets where high-risk and sensitive data reside.
Start your proof of concept with $300 in free credit
- Get access to Gemini 2.0 Flash Thinking
- Free monthly usage of popular products, including AI APIs and BigQuery
- No automatic charges, no commitment
Keep exploring with 20+ always-free products
Access 20+ free products for common use cases, including AI APIs, VMs, data warehouses, and more.
Documentation resources
Guides
Related resources
Redact sensitive data with Sensitive Data Protection
Learn the basic capabilities of the DLP API and try various ways to use the API to help protect data.
Create a de-identified copy of data in Cloud Storage
Scan a Cloud Storage bucket for sensitive data and create a de-identified copy of the data in a separate bucket.
Discover and Protect Sensitive Data Across Your Ecosystem
Complete a skill badge course to demonstrate your skills in using Sensitive Data Protection services to discover, inspect, and de-identify sensitive data in Google Cloud.