Describe BigID

Question 1

Privacy is about people, while existing tools can in most cases tell you what type of data it is but…

Answer 1

not whose data it is.

Question 2

Many existing privacy tools rely on classification, which isn’t…

Answer 2

efficient in many cases.

Question 3

Compliance is a continuous requirements, so one-time scans or very infrequent scan

Answer 3

are not enough anymore.

Question 4

BigID provides another dimension in understanding data. It relies on data values and context to find primary and related or connected data. It goes beyond simplistic regex or metadata catalogs that …

Answer 4

lack detail and context awareness to paint the full picture you need for privacy.

Question 5

At the high-level, BigID finds a mapping between different entities to different data sources. Entities could be

Answer 5

a list of customers, employees, part numbers, patents etc.

Question 6

At the high-level, BigID finds a mapping between different entities to different data sources. Data source could be

Answer 6

databases, file shares, cloud applications storing suspected personal data, etc.

Question 7

Extensible Platform To Deliver Value Across Privacy, Security and Governance

Answer 7

Petabyte Scale Without Copying 
Unmatched Data Coverage 
PI and PII Discovery 
Data and Doc ML Classification
Next Gen Cataloging 
DSAR Automation Across All Data 
Security Remediation Labeling and Access 
Discovery-in-Depth Data Intelligence

Question 8

BigID sits at the center of these three markets:

Answer 8

from data discovery to data intelligence to policy management, our core features are essential to each of these markets (and complementary tools) in order to get the most out of their data.

Question 9

BigID is the first company to help organizations find

Answer 9

PI and not just PII.

Question 10

Operationalize privacy requirements

Answer 10

like data subject rights (like right-to-be-forgotten), data processing record keeping, consent tracking, breach notification by state and country etc.

Question 11

apps: domain-specific value for privacy

Answer 11

DSAR Automation; Data Inventory; Data Processing;
3rd-party Sharing; Consent & Opt-In Governance;
Policy Management

Question 12

apps: domain-specific value for protection

Answer 12

Risk Scoring; Breach Notification; Open Access
Intelligence; Labelling; Credential Discovery;
CyberArk; Hashicorp

Question 13

apps: domain-specific value for perspective

Answer 13

Searchable Data Registry; Data Retention; Stale Data;

Data Quality; Collibra Exchange

Question 14

BigID 4 Cs

Answer 14

Correlation
Classification
Clustering
Catalog

Question 15

Data sources can be added via

Answer 15

CMDB, API script, DAM like IBM Guardium, or manually.

Question 16

The system uses this entity data as seed data or as a learning set to then scan other data sources, initially looking for

Answer 16

learned data and then other nearby data with high correlation back to the entities.

Question 17

Because we lead with correlation, we are able to first find relevant data before

Answer 17

we classify by type, category and context.

Question 18

Customer data is the basis to everything BigID does. This data is stored in many different systems. We scan it, and

Answer 18

run Discovery, Correlation, Classification, Data
Catalog, and Metadata analysis on it, using a large number of data intelligence capabilities natively built into our product

Question 19

BigID does… Discover and index personal data within the customer environment, without

Answer 19

an agent, with no data altering, and without creating extraneous copies

Question 20

BigID does… Correlate personal information across systems and

Answer 20

associate with individuals, to retrieve
personal information for an individual and
report on which system it resides.

Question 21

BigID does… Visualize the data landscape and

Answer 21

expedite locating personal information within it.

Question 22

BigID does… Help companies meet

Answer 22

certain data protection and privacy laws relevant to their countries

Question 23

BigID does not… Crawl the network

Answer 23

to discover or access systems it finds (it will only scan those systems explicitly configured).

Question 24

BigID does not… Uncover shadow IT or

Answer 24

flows of data to systems it is not connected to.

Question 25

BigID does not… Delete or

Answer 25

alter the data, as it only has read access.

Question 26

BigID does not… Analyze data while

Answer 26

it is in motion but we are working on a data-in-motion API and partnering with DLP vendors.

Question 27

BigID does not… Scan

Answer 27

End User devices for personal data.

Question 28

BigID does not… Provide

Answer 28

End Point security. BigID cannot discover data on endpoints (like someone’s laptop),

Question 29

BigID… Advanced scanning algorithms based on

Answer 29

machine learning, matching and classification

Question 30

BigID… Native handling of

Answer 30

structured, semi-

structured and unstructured data

Question 31

BigID… Massive scalability to handle

Answer 31

petabyte data sets

Question 32

BigID… Personal data is not

Answer 32

copied – more secure,

more scalable

Question 33

BigID… Business data flow is

Answer 33

accurately established

from actual scans of actual data sources

Question 34

BigID is designed to automatically

Answer 34

update data inventories and flows as new data sources come online or when the underlying data changes.

Question 35

Based on indexing and inventory of the discovery output, BigID automates

Answer 35

data mapping, generation of business data flow diagrams and entity attribute lineage.

Question 36

There are seven basic data protection principles under EU data protection law. The third principle is the principle of “data minimization” (GDPR Article 5 (1) (c)).

Answer 36

GDPR Article 5
“1. Personal data shall be:
(c) adequate, relevant and limited to what is necessary in relation to the purposes for which they are processed (data minimisation)”

Question 37

The platform is installed as a SaaS or within the customer’s environment - whether

Answer 37

an internal data center, cloud infrastructure, third-party co-location facility, or a hybrid deployment.