I use DataSunrise Database Security for data masking purposes in my environment. I manage a lot of production systems for different applications, and whenever teams need to copy production databases including sensitive information such as PII, PHI, or PCI to non-production environments, I apply masking to those sensitive fields and protect the data from unauthorized users.

I leverage DataSunrise Database Security for data discovery, which is another method I use to find sensitive data.

I appreciate many features, including real-time database activity monitoring and auditing.

In my environment, I manage numerous production systems for different applications. When teams need to copy production databases containing sensitive information such as PII, PHI, or PCI to non-production environments, I apply masking to those sensitive fields and protect the data from unauthorized users.

DataSunrise Database Security's data discovery capability is another valuable tool I use to identify sensitive data.

I have been using DataSunrise Database Security for approximately two and a half years.

My advice to others considering DataSunrise Database Security is that it is a good and unified tool. Overall, it is a very good.

Most of our users, including customers, use it primarily as a Database Activity Monitor. They utilize it to track who is logging into which database and monitor their activities. This includes tasks such as restricting certain SQL commands and understanding environmental limits related to database access.

We have a law in Turkey similar to the GDPR in the European Union. It's almost like a replica. Complying with this law is crucial, and the service plays a significant role. Many customer inquiries revolve around not retaining their data. The service addresses this by providing functionality for masking data within the databases. So, if a user requests data deletion, we can remove any information we have on them within the database, ensuring compliance with the law.

The discovery and masking features, encompassing both static and dynamic database masking, are incredibly useful for ensuring compliance. Most of the time, not everyone accessing the database is a developer or a database admin. Developers might need to see everything, but database admins, even though they manage the database, don't necessarily need to see all the data, especially customer data. So, using masking for database admins and not displaying data in clear text is quite helpful for compliance.

I believe there's room for improvement in their distributor network, especially in Turkey. This is why I was exploring alternatives to DataSunrise Database Security. However, the product itself is quite good. One suggestion for enhancement could be adding an encryption module on top of the masking features, perhaps a more permanent form of preservative encryption.

It functions as a proxy for database access. However, this could be an area for improvement. Currently, it doesn't use agents to integrate with databases; instead, all database instances must connect through DataSunrise Database Security as a proxy. While this setup is mostly done on our Windows server, using an agent approach might sometimes be more convenient for companies compared to a proxy approach.

I rate the tool's stability a ten out of ten. I haven't encountered any issues.

I rate the tool's scalability an eight out of ten. I find it quite agile, and it can scale up. However, the agentless and proxy approach does pose limitations on scalability. Adapting existing infrastructure to work with the proxy setup requires modifications. The largest implementation we've done involved around 150 database admins, developers, and similar roles.

The distributor network in Turkey handles the support, and unfortunately, we are quite dissatisfied with them. While I believe the support team from DataSunrise Database Security itself is likely good, we don't have direct contact with them, making it challenging for me to provide an accurate judgment. However, based on our experience with the distributor, I would rate it a minus one.

The tool's deployment is easy. The deployment duration depends on the size of the infrastructure we're dealing with. For a smaller setup with just a couple of database instances, it usually takes about a week at most, perhaps even a couple of days depending on the specific requirements and the process of setting up the service.

The product is expensive.

I rate the solution an eight out of ten.