Privado is an open source static code analysis tool for discovering data flow in code. It detects personally identifiable information (PII) being processed and further maps data flow from collection points to “sinks” such as external third parties, databases, logs and internal APIs. Privado enables engineers to ask contextual questions about the use of sensitive data at scale. Examples: Use Cases Generating and maintaining data graphs and processing activity reporting records (RoPA/Article 30 reports) Automatically generating data flow graphs Identifying and eliminating data breaches Improving data storage security by identifying and fixing insecure practices Find and fix… . |
#Static #code #analysis #tool #Privado