Category:
Data Governance

Alation

A comprehensive data intelligence platform that combines search, governance, and compliance capabilities to help organizations discover, catalog, and protect sensitive data assets while enforcing policies through features like automated data lineage tracking and role-based access controls.

Automated Intelligence

A cloud-native platform for unstructured data management and governance that provides automated discovery, categorization, and migration capabilities while maintaining PCI DSS compliance, enabling organizations to analyze and secure sensitive data across legacy systems and cloud environments.

BigId

BigID is a cloud-based data discovery and security posture management platform that helps enterprises automatically identify and classify sensitive data across their systems, enabling accurate tracking, protection, and compliance with data privacy regulations at scale.

blancco

Enterprise-grade data erasure software that permanently sanitizes data across laptops, servers, mobile devices, and storage systems, providing tamper-proof compliance certification while preserving hardware for reuse in the circular economy.

clarip

Hybrid AI-powered privacy governance platform that automates data mapping, consent management, and PII discovery across enterprise systems, enabling automated privacy compliance through scan orchestration technology that processes billions of data points to identify and protect sensitive information.

ClearOPS

ClearOPS is an AI governance platform that combines generative AI and document analysis to help organizations assess vendor risks, establish AI policies, and maintain compliance through automated knowledge base creation and cross-team collaboration.

Collibra

A unified data intelligence platform that combines data cataloging, quality monitoring, privacy management and governance capabilities, enabling organizations to discover, protect, and derive value from their data assets while automating regulatory compliance and policy enforcement through a no-code interface.

CSR

A privacy and security program management platform that helps small and medium-sized businesses document their data handling practices and reduce risk through systematic approaches to data collection, storage, transfer, and destruction processes.

Data Sentinel

Data trust and compliance platform that uses deep learning technology to discover, classify, and monitor sensitive data across all enterprise sources, automating data mapping, risk calculation, and remediation to maintain real-time privacy compliance.

datastreams

DataStealth is a data security platform that protects payment card data through DNS-based tamper detection, tokenization, and dynamic data masking, with a focus on PCI DSS compliance and real-time protection without requiring script installation or browser dependencies.

Prisma Cloud (Palo Alto Networks)

Data Security Posture Management (DSPM) solution that automatically discovers and classifies sensitive data across major cloud providers' datastores, providing agentless scanning and classification within 24 hours while maintaining data residency compliance through in-account processing.

Divebell

A privacy-first data discovery and protection platform that automatically scans and classifies sensitive data across enterprise environments, providing real-time risk assessment, automated DSR fulfillment, and policy-driven security actions - all while processing data within the customer's own infrastructure.

Egnyte

A unified platform for enterprise content security and collaboration that combines AI-powered sensitive data discovery, automated governance controls, and secure file sharing capabilities across cloud and on-premises environments, with built-in compliance features for highly regulated industries.

Ethyca

Ethyca develops privacy management tools including Fides, an open-source platform that empowers engineering and legal teams to automate privacy rights fulfillment by integrating privacy controls directly into software development workflows, enabling organizations to automatically discover, classify, and manage personal data across their technology stack while ensuring compliance with global privacy regulations.

eXate

eXate is a data privacy platform that aggregates Privacy Enhancing Techniques (PETs) to protect sensitive data both in motion and at rest, offering centralized policy management and Dynamic Attribute Based Access Controls that automatically enforce data privacy rules across APIs, applications, and databases based on context-aware factors like data origin, destination, and purpose.

Exterro

Exterro is a comprehensive Legal GRC (Governance, Risk, and Compliance) platform that provides digital forensics, e-discovery, and privacy compliance tools for legal teams, law enforcement, and corporations to manage data risks and investigations. The platform's flagship product, FTK (Forensic Toolkit), enables organizations to collect, analyze, and review digital evidence from multiple sources including mobile devices, computers, and cloud services, while maintaining data integrity and chain of custody.

filerskeepers

filerskeepers is a data retention management platform that helps organizations implement and maintain compliant data retention periods across multiple jurisdictions by providing access to over 275,000 retention obligations and integrating directly with enterprise systems like Workday and PeopleSoft through its API and dashboard interfaces.

Global IDs

Global IDs is an enterprise data management platform that automatically discovers, catalogs, and protects sensitive data across complex database environments, using AI-powered scanning and classification to help organizations maintain data privacy compliance and understand their data landscape.

Heureka Software

Heureka Software is a data governance and privacy compliance platform that specializes in managing unstructured data, offering in-place indexing and classification capabilities to help organizations identify, protect, and manage sensitive information across enterprise systems while maintaining local data control.

Immuta

Data security platform that automates access control and policy enforcement across cloud data platforms, using attribute-based access control and dynamic data protection to enable secure data sharing while maintaining regulatory compliance.

InCountry

InCountry is a data residency platform that enables organizations to store and process regulated data within specific geographic boundaries while maintaining global operations across their business applications, with particular capabilities for complex regulatory environments like China through its partnership with Alibaba Cloud.

isms

ISMS.online is a compliance management platform that helps organizations handle multiple security frameworks like ISO 27001, NIST, and HIPAA through a centralized system, offering tools for risk assessment, vendor management, and automated reporting along with integrations to over 5,000 external platforms for streamlined evidence collection and documentation.

JLINC

JLINC is a protocol and platform that enables organizations and individuals to control how their shared data is used through cryptographically signed Information Sharing Agreements (ISAs), which govern automated data exchanges between parties while maintaining audit trails of all transactions.

Klassify

Klassify is a data classification platform that helps organizations identify, label, and protect sensitive information across their digital environments by requiring users and automated systems to apply appropriate classification labels to documents and emails based on data sensitivity. The platform integrates with existing security tools like DLP and encryption systems while providing visual markings and metadata tagging to enable consistent data protection and regulatory compliance.

LightBeam

LightBeam is a Zero Trust Data Protection platform that automates the discovery, classification, and protection of sensitive data across cloud, on-premises, and SaaS applications, helping organizations manage privacy compliance through features like automated data subject requests, consent management, and contextual AI-powered data classification.

Metomic

Metomic is a data security and compliance platform that detects and protects sensitive information across SaaS applications like Slack, Microsoft Teams, OneDrive, SharePoint, and Google Workspace by combining Data Loss Prevention (DLP) technology with automated classification features and real-time monitoring. The platform helps organizations maintain control over sensitive data through automated scanning, custom filtering, structured classification levels, and employee security education.

Mexon Technology

MexonInControl for Privacy is a European-hosted SaaS platform that helps organizations manage GDPR compliance by providing tools to create and maintain required data processing registers, handle data breaches, conduct privacy impact assessments, and verify supplier compliance through configurable assessments and dashboards.

MinerEye

MinerEye is an AI-powered data discovery and protection platform that helps organizations manage unstructured data by automatically scanning, classifying, and securing sensitive information across cloud and on-premise environments, with capabilities to process up to 1 terabyte of data per hour while providing granular classification and risk scoring.

Odaseva

Odaseva is an enterprise data management platform for Salesforce environments that provides tools for data protection, privacy compliance, and sandbox management, with particular emphasis on handling sensitive data through features like automated Data Subject Request processing, military-grade encryption, and sandbox anonymization capabilities.

ohalo

Data X-Ray by ohalo is an enterprise platform that discovers, classifies, and manages unstructured data across cloud and on-premise systems, using machine learning to identify sensitive information and monitor file access patterns. The platform processes content at high speeds while providing automated workflows for data remediation, retention management, and regulatory compliance.

OneTrust

OneTrust is a privacy management and automation platform that helps organizations govern data collection, demonstrate compliance with global privacy regulations, and manage consent across digital properties through centralized controls for privacy assessments, data mapping, incident response, and third-party risk management.

Piiano

Piiano Vault is a data protection service that provides infrastructure for encrypting and securing sensitive customer data through field-level encryption, granular access controls, and comprehensive auditing capabilities, allowing organizations to protect PII and other critical information while maintaining operational efficiency.

pixevety

pixevety is a privacy-focused digital media management platform that enables organizations, particularly schools, to store, organize and share photos and videos while maintaining strict consent controls and permissions for how content can be accessed, used and published. The platform implements Privacy-by-Design principles and includes features like automated face recognition for consent management, granular access controls, and secure sharing capabilities that keep content hosted on the platform even when shared externally.

privado

Privado is a privacy code scanning platform that helps organizations monitor and govern personal data flows by analyzing code from websites, applications, and backend systems to identify data collection, usage, sharing, and storage patterns while ensuring compliance with privacy regulations through automated assessments and real-time monitoring.

privaini

Privaini is an AI-powered privacy risk management platform that generates standardized privacy assessments using externally observable data collected from over 100 sources, enabling organizations to monitor privacy risks across their business networks without requiring direct information from companies. The platform provides automated compliance monitoring for various privacy regulations, assigns normalized privacy scores, and helps organizations manage privacy concerns across multiple jurisdictions through automated reporting and auditing tools.

privIQ

privIQ is an AI-assisted data privacy management platform that helps organizations handle compliance through integrated modules for risk assessment, operational compliance, and data mapping, combining automated tools with human verification to coordinate privacy requirements across departments and generate required documentation.

Protegrity

Protegrity is an enterprise data protection platform that helps organizations secure sensitive data through tokenization, encryption, and data masking while maintaining data utility for analytics and operations; it provides centralized security policy management with decentralized protection across on-premises, hybrid, and multi-cloud environments.

Protenus

Protenus is a healthcare compliance analytics platform that uses artificial intelligence to monitor patient privacy and drug diversion risks in healthcare settings, auditing system accesses and medication handling patterns to detect potential violations while enabling healthcare organizations to maintain regulatory compliance. The platform combines AI-driven monitoring with workflow automation to help healthcare facilities protect patient data privacy, prevent drug diversion, and reduce compliance risks through early detection of suspicious patterns and behaviors.

Proteus-Cyber

Proteuscyber is a data privacy management platform that helps organizations automate privacy impact assessments, vendor risk management, and regulatory compliance through features like pre-configured templates, automated workflows, and tools for handling data transfer requirements under frameworks like GDPR, CCPA, and Schrems II.

ProvePrivacy

ProvePrivacy is a data protection management platform that helps organizations monitor and control their data protection processes through integrated modules for RoPA (Record of Processing Activities), incident management, policy administration, and risk assessment, while providing guidance for non-expert users through dynamic questions and screen tips.

Pryv

Pryv.io is a middleware platform that helps organizations manage personal data throughout its lifecycle while maintaining privacy compliance, featuring a distributed storage architecture where each user's data remains separate and is accessed through consent-based controls. The platform specializes in handling high-frequency data collection and real-time notifications, making it particularly suited for healthcare, IoT, and financial services applications that require continuous monitoring while meeting regulatory requirements.

relyance

Relyance AI is a data governance platform that uses machine learning to continuously scan code, infrastructure, and third-party integrations to maintain a live map of data flows across organizations, enabling automated privacy compliance through features like data protection assessments, privacy rights management, and records of processing activities (ROPAs).

RISMA

Rismasystems is a unified Governance, Risk, and Compliance (GRC) platform that integrates tools for managing data privacy, information security, risk management, and internal controls, helping organizations streamline compliance with multiple regulatory frameworks in one centralized system. It offers automated workflows, collaboration features, and expert content to support GDPR, ISO 27001, and other regulatory requirements.

SecuPi

Secupi is a data security platform that encrypts and masks sensitive data before it moves to cloud environments, providing real-time monitoring and access control to help organizations maintain privacy compliance while using cloud analytics tools like Snowflake and Databricks. The platform specializes in client-side encryption and dynamic data masking, allowing companies to protect sensitive information without modifying the underlying data while enabling secure cross-border data collaboration.

securiti

Securiti is a data compliance and privacy operations platform that automates privacy requirements across multiple jurisdictions, helping organizations manage consent, preferences, and regulatory obligations through a comprehensive PrivacyOps framework that adapts to different regions' specific privacy laws and requirements.

skyflow

Skyflow is a data privacy vault platform that isolates and protects sensitive customer information like PII, PHI, and payment data by transforming it into non-exploitable tokens, while providing fine-grained access controls and comprehensive audit logging to help organizations maintain security and regulatory compliance.

Smart Global Governance

Smart Global Governance is an integrated risk management and compliance platform that helps organizations manage privacy, security, and regulatory requirements through eight specialized modules covering areas like privacy, legal compliance, and ethics, with features for automating compliance processes, conducting risk assessments, and maintaining regulatory documentation across multiple jurisdictions.

Solidatus

Solidatus is a data governance and metadata management platform that creates visual representations of data lineage across enterprise systems, helping organizations track and understand how data flows through their infrastructure while maintaining regulatory compliance and risk controls. The platform enables both automated and manual documentation of data flows, processes, policies, and obligations, with versioning capabilities that provide historical tracking and audit trails.

Spirion

Spirion is a data protection platform that discovers, classifies, and secures sensitive data across enterprise environments through automated workflows and contextual analysis, helping organizations maintain regulatory compliance and reduce data privacy risks through features like differential privacy, subject rights request management, and user-level remediation.

SureCloud

SureCloud is an integrated Governance, Risk and Compliance (GRC) platform that helps organizations manage risks, ensure regulatory compliance, and oversee third-party vendors through features like automated assessments, policy management, and real-time monitoring dashboards.

TerraTrue

TerraTrue is a privacy and security platform that integrates automated privacy reviews, security assessments, and compliance management into the product development lifecycle, with built-in workflows for vendor risk management, data mapping, and privacy impact assessments across multiple regulatory frameworks.

Transcend

Transcend is a privacy infrastructure platform that automates data privacy compliance by mapping, managing, and governing personal data across client-side, backend systems, and AI workflows, while ensuring adherence to global regulations like GDPR and CCPA.

Truata

Truata is a privacy-enhanced data analytics platform that helps organizations analyze and share sensitive data while maintaining compliance with privacy regulations through advanced anonymization, de-identification, and risk assessment capabilities.

Varonis

Varonis is a data security platform that protects sensitive enterprise data across cloud and on-premises environments through continuous monitoring, behavior analysis, and automated policy enforcement, with capabilities spanning data classification, access governance, threat detection, and security posture management.

Vigilant Software

Vigilant Software offers risk management and compliance tools including vsRisk for ISO 27001 risk assessments and a Data Flow Mapping Tool for GDPR compliance, enabling organizations to conduct risk assessments, map data flows, and maintain regulatory compliance through their integrated CyberComply platform.

Virtru

Virtru is a data security platform that provides end-to-end encryption and access controls for emails and files shared via cloud services, with features for regulatory compliance and key management that enable organizations to maintain control over sensitive data throughout its lifecycle.

Whistic

Whistic is a third-party risk management platform that uses AI to automate vendor security assessments and documentation sharing, enabling organizations to evaluate vendor security posture and share their own security information through a centralized Trust Center.

WiredRelations

WiredRelations is a SaaS-based GRC management platform that helps organizations transform privacy and information security processes into structured programs through data-first compliance mapping, integrated vendor management, and collaborative risk assessment tools.

Zartech

Zartech provides a cloud-based governance, risk and compliance (GRC) platform that combines cybersecurity assessment, third-party risk management, and privacy compliance tools to help organizations evaluate their security posture and meet regulatory requirements.

ZLTI

ZLTI is an enterprise data management platform that provides in-place analysis and governance of unstructured data, helping organizations manage compliance, security, and privacy requirements across emails, documents, and collaboration tools without creating separate data archives. The platform enables enterprises to identify sensitive content, remediate ROT data, and maintain compliance with regulations like HIPAA and GDPR while providing analytics capabilities for organizational insights.