Oracle Data Safe

Get Started

Oracle Data Safe helps organizations to accelerate Cloud adoption, achieve data privacy and compliance by discovering, classifying, and masking sensitive data. It also helps organizations establish IT internal controls for their database infrastructure in the cloud. Audit information is consolidated from multiple sources and alerts/reports are generated to meet security and regulatory requirements.

Data Masking helps to extract entire copies or subsets of application data from the databases, anonymize, and minimize personal data so that the data can be safely shared with the developers, testers, partners, and other third parties.

Watch an introductory video about Oracle Data Safe, or read the text version.

Target Database Information Stored in Oracle Data Safe

As an Oracle Data Safe service consumer, you control what data is retrieved and stored by Oracle Data Safe. Typical types of data are:

  • Audit data and metadata about database users, including username, privileges and role assignments - If configured to do so, Oracle Data Safe collects audit data and user metadata from the target databases for analysis, alerting, and reporting.
  • Metadata about audit policies - If configured to do so, Oracle Data Safe collects information about unified audit policies within the database, including the policy name, policy condition, and policy state (enabled or disabled).
  • Metadata about the database's security configuration, including users and their privileges - If configured to do so, Oracle Data Safe collects configuration information from the database to identify areas where the configuration does not match common practices, may introduce additional risk, or where security features are not enabled.
  • Metadata about database users, including username, privileges and role assignments, and account status - If configured to do so, Oracle Data Safe collects information about users to assess user risk.
  • Metadata about data stored within the database - If configured to do so, Oracle Data Safe scans the target database for sensitive data and retrieves the schema, table, and column names, as well as the number of rows of data involved. The database schema names, table names, and column names are collected within Oracle Data Safe and associated with the appropriate sensitive data type.
  • Metadata about database structures - If configured to do so, Oracle Data Safe masks sensitive data within the database. As part of that operation, Oracle Data Safe collects information about table structures, including primary and foreign key relationships, column names and data types, and the names and types of indexes.
  • Data - If configured to do so, Oracle Data Safe will retrieve one (1) sample value for each discovered item of sensitive data to assist the Oracle Data Safe user in validating the discovery results. This option is turned off by default. The data can only be reviewed during the discovery phase and is not accessible later.
  • Metadata about the database - To provide supported features, Oracle Data Safe collects metadata about the database, including database edition and version.
  • Database connection details including database credentials - When a database is registered in Oracle Data Safe, Oracle Data Safe collects database connection details and the Oracle Data Safe database account credentials, as provided through user inputs, to be able to access the database and provide the Oracle Data Safe features.