⚙ Configuration Details
Selected country
IN
Selected sector
Other
Selected PII patterns
Phone (India), Aadhaar (India), Aadhaar VID (India), PAN Card (India), Voter ID (India), GSTIN (India), TAN (India), CIN (India), …
Show all 46 patterns
Phone (India), Aadhaar (India), Aadhaar VID (India), PAN Card (India), Voter ID (India), GSTIN (India), TAN (India), CIN (India), Vehicle Registration (India), Ration Card (India), Credit Card (RuPay), UPI ID (India), IFSC (India), ABHA Number (India), ABHA Address (India), Postal Code (India), Passport (India), Driver's License (India), Aadhaar Number (IN), IFSC Code (IN), Indian Passport (IN), Vehicle Plate (IN) (IN), Voter ID (EPIC) (IN), GSTIN (IN), ABHA Health ID (IN), Passport Number (IN), Driving License (IN), Vehicle License Plate (IN), Phone Number (E.164) (IN), EPF UAN Number (IN), Ration Card Number (IN), Corporate ID (CIN) (IN), NPS PRAN Number (IN), Academic Bank of Credits (ABC) ID (IN), Udyam Registration No (IN), Marriage Certificate Serial (IN), Property Index Number (IN), e-Sign Transaction Hash (IN), PAN Card (Income Tax ID) (IN), UPI ID (VPA) (IN), Driving License Number (IN), APAAR / ABC Student ID (IN), DIGIPIN Address (IN), e-Shram Number (IN), Bhu-Aadhar (Land ID) (IN), ESIC IP Number (IN)
Regulations in scope
DPDP Act (Digital Personal Data Protection Act, 2023), GDPR (General Data Protection Regulation), PCI DSS v4.0, RBI Tokenization
📄 Scan Details
Scan Session ID
094f4511-7fe7-4d10-8a4a-7eb1fe634353
Scan Mode
HYBRID
Servers Scanned
MySQL
Server IPs
10.192.45.12
Scan Started
5/23/2026, 12:23:09 PM
Scan Completed
2026-05-23 12:23:12
Databases Scanned
1
Tables Scanned
2
📊 Executive summary
58911
Total Findings
9
PII Types
2
Tables
100
Risk Score
⚠ Severity Distribution
37670
CRITICAL
11229
HIGH
10012
MEDIUM
0
LOW
🎨 PII Type Distribution
58911
Total
| PII Type | Count | Share | |
|---|---|---|---|
| Aadhaar (India) | 2566 | 4.4% | |
| Credit Card | 5 | 0.0% | |
| IFSC (India) | 10000 | 17.0% | |
| PAN Card (India) | 8955 | 15.2% | |
| Passport | 3524 | 6.0% | |
| Phone | 11229 | 19.1% | |
| Postal Code | 10012 | 17.0% | |
| UPI ID (India) | 6703 | 11.4% | |
| Voter ID | 5917 | 10.0% |
🗃 Database Breakdown
| Database | Tables | Findings |
|---|---|---|
| customer_profiles_prod | 2 | 58911 |
🛡 Scanned, no PII found
These tables were inspected during this session and produced zero PII matches. Listed here so coverage is explicit rather than implied.
| Host | Database | Table | Scanned At |
|---|---|---|---|
| MySQL | customer_profiles_prod | user_activity_logs | 2026-05-23T12:23:11.895058201+00:00 |
1 clean table.
🔎 Detailed Findings
| # | Host | Database | Table | Column | PII Type | Classification | Sensitivity | Count | Severity | Conf. | Value | Compliance Tags | Last Inserted Date |
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| 1 | MySQL | customer_profiles_prod | customer_kyc | aadhaar_number | Aadhaar (India) | Secret | Very High | 945 | CRITICAL | 80% | 5541 9147 6896 | DPDP Act (Digital Personal Data Protection Act, 2023), GDPR (General Data Protection Regulation) | |
| 2 | MySQL | customer_profiles_prod | customer_kyc | aadhaar_number | Phone | Confidential | High | 24 | HIGH | 80% | 916149752005 | DPDP Act (Digital Personal Data Protection Act, 2023), GDPR (General Data Protection Regulation) | |
| 3 | MySQL | customer_profiles_prod | customer_kyc | pan_number | PAN Card (India) | Secret | Very High | 8955 | CRITICAL | 80% | QJIPI7319S | DPDP Act (Digital Personal Data Protection Act, 2023), GDPR (General Data Protection Regulation) | |
| 4 | MySQL | customer_profiles_prod | customer_kyc | passport_number | Passport | Secret | Very High | 3524 | CRITICAL | 80% | Z9567495 | DPDP Act (Digital Personal Data Protection Act, 2023), GDPR (General Data Protection Regulation) | |
| 5 | MySQL | customer_profiles_prod | customer_kyc | phone | Phone | Confidential | High | 10000 | HIGH | 80% | +91 6887315806 | DPDP Act (Digital Personal Data Protection Act, 2023), GDPR (General Data Protection Regulation) | |
| 6 | MySQL | customer_profiles_prod | customer_kyc | pincode | Postal Code | Internal | Medium | 10000 | MEDIUM | 80% | 395435 | DPDP Act (Digital Personal Data Protection Act, 2023), GDPR (General Data Protection Regulation) | |
| 7 | MySQL | customer_profiles_prod | customer_kyc | voter_id | Voter ID | Secret | Very High | 5917 | CRITICAL | 80% | DMS8202274 | DPDP Act (Digital Personal Data Protection Act, 2023), GDPR (General Data Protection Regulation) | |
| 8 | MySQL | customer_profiles_prod | payment_methods | bank_account_number | Aadhaar (India) | Secret | Very High | 266 | CRITICAL | 80% | 2400179938643344 | DPDP Act (Digital Personal Data Protection Act, 2023), GDPR (General Data Protection Regulation) | |
| 9 | MySQL | customer_profiles_prod | payment_methods | bank_account_number | Credit Card | Secret | Very High | 5 | CRITICAL | 80% | 6088220267141188 | DPDP Act (Digital Personal Data Protection Act, 2023), GDPR (General Data Protection Regulation), PCI DSS v4.0, RBI Tokenization | |
| 10 | MySQL | customer_profiles_prod | payment_methods | bank_account_number | Phone | Confidential | High | 82 | HIGH | 80% | 09137966800 | DPDP Act (Digital Personal Data Protection Act, 2023), GDPR (General Data Protection Regulation) | |
| 11 | MySQL | customer_profiles_prod | payment_methods | credit_card_number | Aadhaar (India) | Secret | Very High | 1355 | CRITICAL | 80% | 5347 2918 8845 | DPDP Act (Digital Personal Data Protection Act, 2023), GDPR (General Data Protection Regulation) | |
| 12 | MySQL | customer_profiles_prod | payment_methods | ifsc_code | IFSC (India) | Secret | Very High | 10000 | CRITICAL | 80% | BARB0FD6KSI | DPDP Act (Digital Personal Data Protection Act, 2023) | |
| 13 | MySQL | customer_profiles_prod | payment_methods | upi_id | Phone | Confidential | High | 1123 | HIGH | 80% | 7719128618 | DPDP Act (Digital Personal Data Protection Act, 2023), GDPR (General Data Protection Regulation) | |
| 14 | MySQL | customer_profiles_prod | payment_methods | upi_id | Postal Code | Internal | Medium | 12 | MEDIUM | 80% | 876456 | DPDP Act (Digital Personal Data Protection Act, 2023), GDPR (General Data Protection Regulation) | |
| 15 | MySQL | customer_profiles_prod | payment_methods | upi_id | UPI ID (India) | Secret | Very High | 6703 | CRITICAL | 80% | shruti.dhillon3062@okaxis | DPDP Act (Digital Personal Data Protection Act, 2023) |
🛡 Findings by Regulation
DPDP Act (Digital Personal Data Protection Act, 2023)
58911 findings
GDPR (General Data Protection Regulation)
42208 findings
PCI DSS v4.0
5 findings
RBI Tokenization
5 findings
💡 Remediation Hints
- DPDP: Designate a Data Protection Officer, obtain explicit consent with plain-language notices, and enable data-principal rights (access, correction, erasure) within the prescribed 15 days.
- GDPR: Document lawful basis for processing, provide data-subject access, and ensure a Data Processing Addendum is in place with every sub-processor.
- PCI_DSS_V4: Mask PANs (show at most first-6/last-4), rotate encryption keys annually, and segment the cardholder-data environment from the rest of the network.
- RBI_TOKENIZATION: Replace stored card numbers with network-issued tokens; only card issuers / networks may retain the actual PAN.
- ISO 27001 / SOC 2: Maintain an asset and data inventory, assign data owners, review access at least quarterly, and retain evidence for audit readiness.
- NIST Privacy Framework: Map personal-data processing activities, document risk decisions, minimise collection, and track remediation owners with target dates.
- Data Protection Baseline: Encrypt sensitive data at rest and in transit, rotate keys, enforce least-privilege access, and monitor privileged reads of PII fields.
- Retention & Disposal: Define retention periods by classification, purge expired records, and verify backups follow the same disposal schedule.
- Incident Response: Maintain breach triage playbooks, notification decision records, and tested evidence collection procedures for affected data subjects and regulators.