Google Cloud Platform’s Data Loss Prevention API in depth
Read time: 3 minutes 34 seconds

Features of DLP API
- DLP API has over 120 pre-build detectors (InfoType Detector), and organizations can create custom detectors for their specific use-case.
- After detecting sensitive data, DLP API can redact, mask, tokenize, and transform text and images to ensure privacy.
- DLP API is a managed service. GCP can scale DLP API according to the data input provided.
- The API’s classification results can be sent directly to Big Query for detailed analysis,or exported to another environment.
- Cloud DLP handles data securely and undergoes multiple independent third-party audits to test data safety, privacy, and security.
DLP Proxy Architecture


- Infrastructure admin
Installs and configures the proxy to access the Cloud DLP proxy’s compute environment.
- Data analyst
Accesses the client that connects to the DLP proxy.
- Security admin
Classifies the data, creates the Cloud DLP templates, and configures Cloud KMS.
Conclusion
Google Cloud Platform’s Data Loss Protection API provides a service that can make organizations manage sensitive data, including detecting and redaction, masking, and tokenizing such data. This can help organizations comply with regulations such as GDPR, and reduce the risk of data exposure and data breaches.
To get hands-on experience on Google Cloud’s DLP API, try the website located here.
Author
Anish Bhattacharya is a Consultant at Encryption Consulting, working with PKIs, creating Google Cloud applications, and working as a consultant with high-profile clients. He is doing his graduation from DIT University, Dehradun in India.
LinkedIn: www.linkedin.com/in/coffee-coded/