Data Protection Framework is a python library/command line application for identification, anonymization and de-anonymization of Personally Identifiable Information data.
The framework aims to work on a two-fold principle for detecting PII:
- Using RegularExpressions using a pattern
- Using NLP for detecting NER (Named Entity Recognitions)
-
Following Global detectors have been completed:
- EMAIL_ADDRESS : An email address identifies the mailbox that emails are sent to or from. The maximum length of the domain name is 255 characters, and the maximum length of the local-part is 64 characters.
- CREDIT_CARD_NUMBER : A credit card number is 12 to 19 digits long. They are used for payment transactions globally.
-
Following detectors specific to Singapore have been completed:
- PHONE_NUMBER : A telephone number.
- FIN/NRIC : A unique set of nine alpha-numeric characters on the Singapore National Registration Identity Card.
-
Following anonymizers have been added
- Redaction: Deletes all or part of a detected sensitive value.
- Encryption : Encrypts the original sensitive data value using a cryptographic key. Cloud DLP supports several types of tokenization, including transformations that can be reversed, or "re-identified."
Following features are part of the backlog with more features coming soon
- Detectors:
- NAME
- ADDRESS
- Anonymizers:
- Masking: Replaces a number of characters of a sensitive value with a specified surrogate character, such as a hash (#) or asterisk (*).
- Bucketing: "Generalizes" a sensitive value by replacing it with a range of values. (For example, replacing a specific age with an age range, or temperatures with ranges corresponding to "Hot," "Medium," and "Cold.")
- Replacement: Replaces a detected sensitive value with a specified surrogate value.
You can have a detailed at upcoming features and backlog in this Github Board
Clone the repo and follow the below instructions:
Assuming that $pwd is where you cloned the repo
2. Setup venv : ./bin/setup_venv_locally.sh
3. Activate venv : source ./.venv/bin/activate
4. Install dependencies : pip install -r requirements-dev.txt
An example for the config JSON is located at <PROJECT_ROOT>/config.json
{
"acquire": {
"file_path": <FILE PATH TO YOUR INPUT CSV>,
"delimiter": <YOUR CSV DELIMITER>
},
"analyze": {
},
"report" : {
"location" : <PATH TO YOUR REPORT OUTPUT FOLDER>,
"level" : <LOG LEVEL>
},
"anonymize": {
"output_file_path" : <PATH TO YOUR CSV OUTPUT FOLDER>
}
}
Update this file first <PROJECT_ROOT>/src/tests/config/test_config.json
You can run the tests by triggering shell script located at <PROJECT_ROOT>/bin/run_tests.sh
- Set up a JSON config file similar to the one seen at the project root. In the 'acquire' section of the json, populate the input file path and the delimiter. In the 'report' section, provide the output path, where you want the PII detection report to be generated. A 'high' level report just calls out which columns have PII attributes. A 'medium' level report calls out the percentage of PII in each column and the associated PII (email, credit card, etc)type for the same.
- Run the main class -
python src/dpf_main.py --config <absolute path of the config file>You should see the report being appended to the file named 'report_<date>.log' in the output path specified in the config file.
Run python setup.py bdist_wheel and the .whl file will be created in the dist folder.
To run spark-submit locally, you can run the following command
spark-submit --py-files dist/SomePackage-*.whl src_spark/main.py --config config.json
Distributed under the MIT license. See LICENSE for more information.
You want to help out? Awesome!