Find your sensitive data

DataMapper is a plug-and-play tool that finds files containing sensitive information across your company’s local or cloud-based systems.

Find sensitive files
Protect people’s privacy
Correct your data processing

Avoid fines

5/5 Ratings on Azure

5/5 Ratings on G2

Did you know that 7% of an office worker's files contain sensitive information?

Find it with DataMapper

Step 1: Scan your files

You select the data locations and folders you want to scan.

Step 2: Get an overview of risk data

Get statistics about the sensitive data you store.

Step 3: Clean up

Files with sensitive information are presented to you in a list. Now it’s up to you what to do with them.

Step 4: Start autopilot (optional)

Activate notification emails and be notified every 14 days of changes in your data with sensitive information.

Pretty simple, right?

GDPR Risk Report

Not sure what sensitive data you store?

A GDPR Risk Report, based on a scan with DataMapper, is a quick and cost-effective way to get an overview of your files with sensitive content.

Affordable (starting at € 700)
Takes 20 minutes of your time
A detailed report with GDPR key statistics

DataMapper is a kind of “sensitive term scanner

“Now, you can scan your data on local and cloud-based systems for sensitive information in minutes. DataMapper is a Sensitive Data Discovery tool that scans your data to find the documents, emails and images that contain words and terms related to privacy regulations such as UK-GDPR. DataMapper is for companies that has lost track of its sensitive data on e-mail, hard drives, cloud etc., and who lack the time to go through it all.

DataMapper is a cloud-based SaaS (Software as a Service), that use artificial intelligence and machine learning algorithms to find numbers and words which can be categorised as sensitive across your company’s employees and data systems. It automatically classifies files into 80 different categories with up to 98% accuracy.

After a scan, you will be presented with an overall overview of the files that are at risk of containing sensitive information. The administrator can see where the inappropriate workflows are, so you can improve your practices for handling data. DataMapper is run from a browser-based and can be used by all your employees or an administrator who can scan the entire company’s data.”

Sebastian Allerelli
Founder & COO

Use DataMapper to:

Clean up

Cleaning up your sensitive data can be a daunting task. Even if you spent weeks at it, it would be impossible to be sure you didn’t miss something important. DataMapper flags your risk data accurately in just minutes.

Discover security risks

Most companies don’t know they are putting people’s privacy at risk until it is much too late. Use DataMapper to spot your data processing mistakes now and fix them before they affect your customers.

Avoid fines

Storing sensitive data unprotected can result in privacy fines, that cost up to 4% of your annual turnover and irreparable damage to your reputation as a data processor. DataMapper shows you exactly what data you need to protect to reduce privacy risks and liability.

Discover how DataMapper works


Privacy Scanner

Scan your documents, emails and images for sensitive words and numbers.


Get a complete overview and key statistics about your risk files.

Risk Score

Files are classified as high, medium or no risk of containing sensitive data.


Files are categorised by age, location, document type, personal data, sensitive terms, risk numbers and relationships.

Smart Filters

Filter files by name, age, relationships, location, risk rating, document category and sensitive terms.


For each file, you can see the file location, who created the file, who has access to the file, etc.


Open a preview of the document and see where sensitive terms appear in the text or image.

File Manager

After a scan, you can easily decide what to do with the document; open, move or delete the document directly in DataMapper.


Set up deletion rules, file moves, notification emails and other automations through integration to Logic Apps.


Admins can invite users, see which employees have the most sensitive data, and monitor risk files for the whole company.

Custom Risk Keywords

Create the privacy search engine that suits your business by adding your own sensitive terms. Or leave out those that are irrelevant to you.


With a Power BI-tool you can get complete reports on how you handle sensitive data to use as documentation for data audits.


Get clean up assistance with notification mails every 14th day on updates to your data containing sensitive data.


Outlook folders you select will auto-scan daily to keep your data inventory up-to-date and complete.


DataMapper detects sensitive words and numbers in English and Danish. More languages coming soon.


Get started in minutes

Many Data Discovery tools on the market require coding, making them very expensive to install and maintain. With DataMapper you can get started in a few minutes, without having to write a single line of code. Our Customer Success Team takes you through the entire onboarding and does not let go of your hand until you are ready. If you have any questions afterwards, we are ready to provide support by phone, chat or email. If you need further assistance, we offer a PassCard.

Made for you

DataMapper offers three types of connectors that allows you to create workflows with:
  • Native Connectors – These connectors are integrated using DataMapper’s Service Integration Engine and currently include Microsoft OneDrive, Microsoft Outlook, Microsoft SharePoint, Google Drive, Google Mail, Azure Blob Storage, Local Drives and Network Drives (Windows Fileshare).
  • Logic Apps – We have integrated DataMapper with Logic Apps to provide access to over 1000 connectors. See the full list here.
  • Custom Connector – Logic Apps allows for integration to any RESTful API, providing flexibility for customers who have specific requirements.

Look for sensitive words and numbers

DataMapper scans for words and numbers that, according to privacy regulations such as GDPR fall into the sensitive category. This includes:

  • Personally identifiable data/PII (e.g. name, date of birth or social security number)
  • Sensitive personal data (e.g. trade union, health info or sexual orientation)
  • Business-critical terms (e.g. contract, budget or IP document)

The list is constantly being expanded with new words and numbers. In addition, you have the option of adding or omitting words and numbers from a scan, so that DataMapper finds exactly the terms that are sensitive to you.

File types

Search through documents, images and emails

Find sensitive information in these file types:

  • Documents (txt, rtf, pdf, doc, docx, gdoc, odt, pptx, ppt, xls, xlsx, gsheet, html, htm)
  • Images (jpg, jpeg, png, heic)
  • Emails (msg, txt)

Keep track of your sensitive data

After a scan, all files containing sensitive content are displayed in a list. As an administrator, you gain a comprehensive overview of the entire company’s sensitive data, while individual users receive an overview of their own sensitive data. This allows you to quickly identify areas and processes that need attention to enhance your compliance efforts.


Delete, move or approve

With just a few clicks, you can delete or approve files with sensitive content and ensure proper cleanup. DataMapper simplifies adherence to your privacy policy and data processing rules. Any deviations from the company’s data policy are automatically recorded, prompting users to clean up according to internal guidelines and applicable data legislation.


You are in charge

As an administrator, you manage DataMapper on behalf of your company. You can invite new users and have rights to customise the cleanup on behalf of your employees. You get key statistics for both the entire company’s and the individual employee’s processing of sensitive data. As an admin, you get an overview of which processes generate risk.


Clean up big scale

The administrator has the opportunity to create automations and get sensitive data processing done much faster. For example, set up rules such as:

  • Delete all files with National Insurance numbers that are over 5 years old
  • Approve all word files that contain the word “corona”
  • Move all CVs to a special folder

Note: only applies to Private Tenant users.


Demonstrate your compliance

The DataMapper administrator has access to key statistics of the company’s data processing. With Microsoft´s Power BI tool, the administrator can also extract detailed statistics. This facilitates the preparation of reports for internal audits or demonstrations of compliance to, for example, the Information Commissioner´s Office.


Make privacy an advantage

When you’ve gone to great lengths to protect sensitive information, you should let the world know about it. In Safe Online, we have created a DataMapper Digital Trust Badge, which shows that people can confidently trust you with their sensitive information. The badge means that you are dedicated to handle sensitive data responsibly. Use the badge on email signatures, websites, etc.
IT security

Protect data following best practice

DataMapper encrypts your data to ensure that files are only accessible to you. No changes are made to your local folder structures where files are stored. DataMapper’s security reflects data security best practices and recommendations.

Articles on DataMapper


Guide for handling sensitive personal data

Find out how DataMapper can help


How to find personal data with datamapping tool

Learn how to use DataMapper


What compliance software can do for you

Explore how to benefit from DataMapper


Are you ready for a data audit?

Prepare for a data audit with DataMapper

Users on DataMapper

We use Datamapper to scan our emails and drives for GDPR content. It was super easy to install and easy to access. At first, we used it to clean up everything that had accumulated over time. Now we use it continuously to ensure that we comply with our own rules. I can definitely recommend Datamapper. Safe Online were great at helping us get started and when we have questions, they respond quickly.

Kristian HansenCoordinator at Dansk Søredningsselskab

We are an IT and BI consultancy that we receive new personal data every day that we must handle correctly. DataMapper is a smart solution that easily gives us an overview of our sensitive personal data in our company. When it comes to GDPR compliance, DataMapper solves a key task for us.

Pelle EilandCEO, Fairpeople

After we scanned with DataMapper, I was a little unsure what now? But then I discovered that there were some different folders that would be good to get "locked" so that not everyone can just access them. Then I found out that we could use one of our other solutions to store important information on customers, so that it is not on our PC, but secured, online. I have started to keep an eye on our emails, to ensure that we do store things that we shouldn't in our mail box.

Maja PedersenHR Chief, JP Vagt

In our company, we are not very good at cleaning up or keeping our data centers in order. We have data folders to help us with that. It is a small ingenious service that can quickly and efficiently look through all our data. As responsible for GDPR, it gives me help for a good night's sleep.

Peter AndersenIT-Manager in medium-sized company

Delivering security and compliance solutions is what we do. We’ve partnered with Safe Online to offer their privacy solutions to our clients, but we also use them ourselves. Since we both focus on GDPR compliance and safe IT solutions, it’s a perfect fit."

Thomas LarsenCTO, Datacompagniet

We were very pleased with how DataMapper works. We began a process where we scan our data at least once a month. After each scan, we are presented with a list of the files that contain personal sensitive data. We can then choose to delete or move the files. We are also able to see when the files were created and who has access to them, which is a big help in identifying any security risks. DataMapper makes it easier for us to comply with GDPR.

Mette DavidsenOffice Assistent, Backupvikar

GDPR is not something we have the time or desire to spend a lot of energy on. Datamapper is superb at giving us an overview of our data. It definitely gets my recommendation.

Søren HenriksenData Protection Officer at medium-sized company

The lawyer on DataMapper

"DataMapper is, in my professional opinion, an excellent tool that can be of great help to a company in terms of cleaning up its data.

DataMapper uses artificial intelligence to find text strings related to sensitive personal data. It means that you can look out for how you handle your personal data relatively quickly, with few funds and without much insight into data regulation. DataMapper alone is not enough to ensure compliance, but it is a good step on the way there.”

Søren Munk Hansen
Attorney-at-law at Highbridge Law Firm

Business leaders on DataMapper

“I'm amazed at how easy DataMapper is to work with.

Who knew it could be so easy? DataMapper found files I suspected of containing sensitive information (plus some!) and showed me exactly where they were stored. Going through all the sensitive information we’ve collected is a task that is all too easy to put off or even forget. Now there is finally a tool to make it simple. I can keep track of everything and see who cleans up, which was exactly what I needed!
As a business owner and board member, I believe that DataMapper should be a mandatory system for every business.

Kim Storm
Owner of the compliance company IDM365

"Every company should have DataMapper.

Secure data handling should be an essential part of every modern company’s modus operandi. Unfortunately, there is a common perception that sensitive data management is too complicated and difficult, and that makes people feel justified in skipping key security steps and shifting focus to other tasks they are more familiar with. I think that’s why so many companies are still not taking responsibility for the personal data they store.
I’ve demoed DataMapper several times, and I am impressed by how easy it can be for people to decide what to do with sensitive data once it is all highlighted and neatly laid out in front of them.

Gregers Kronborg
Business Angel Investor (Spotify & Trustpilot)

“I personally cleared out 77 high-risk files.

Navigating the intricacies of proper handling of personal information is no small feat, and this is precisely where DataMapper has proven to be a valuable asset. One notable aspect of DataMapper is its accessibility to all employees. The straightforward setup process has garnered positive feedback from our staff. I’ve personally experienced its effectiveness, successfully clearing out 77 high-risk files from my inbox – files I was unaware of or had forgotten about.
The landscape of data protection legislation can be overwhelming. However, having a simple yet powerful tool like DataMapper has proven instrumental in our effort to protect the sensitive data we process.

Steen Rosenfalck
Founding Partner, Solicitor & Advokat (L) (Denmark), Head of Corporate Commercial at law firm ebl miller rosenfalck

Get Started with DataMapper

There are two ways you can use DataMapper to clean up your sensitive data

Risk Report1-time overview

From € 700


Have you lost track of your sensitive data? Get a GDPR Risk Report. The report is based on a one-time scan by DataMapper on your Outlook or network drives. This solution is popular among companies that are unaware of which sensitive data they proces. Read more about the report here.

  • Scan of Outlook or network drive
  • 1 GDPR Risk Report
  • Subscription

Write us





With a DataMapper subscription, your data sources will be scanned and monitored for sensitive content going forward. You can customize DataMapper to your needs by selecting the number of users and which data systems you want monitored for sensitive information.

  • Choose integrations (see list)
  • Choose number of users
  • Personal onboarding & support

Write us



How can DataMapper help you comply with regulations? What should you do with high-risk documents you find? Get answers to frequently asked questions.

What is DataMapper?

DataMapper is a Data Discovery tool that finds sensitive data scattered throughout a company’s data systems.

Why do you need to keep track of the company's sensitive data?

Sensitive data must be protected under privacy regulations such as the GDPR, CCPA and PIPL.

How can DataMapper help me comply with data privacy regulations?

DataMapper can help a company comply with privacy regulations by:

  • Finding sensitive data
  • Classify data according to their level of risk
  • Delete/move sensitive data the company should not have
  • Discover security holes in the company’s processing of sensitive data
  • Monitor the company’s risk level on an ongoing basis
  • Automate the processing of sensitive data
  • Document protection of sensitive data

Is DataMapper cloud-based or on-premise?

DataMapper is cloud-based.

Who is DataMapper for?

DataMapper is designed for small and medium-sized businesses.

How does DataMapper search for sensitive data?

DataMapper uses a combination of advanced AI and machine learning algorithms when searching. Using this search method, DataMapper finds sensitive data with very high precision.

What does DataMapper search for?

DataMapper scan for numbers and text defined by The EU Commission as being sensitive information. The list is continuously expanded with new words and numbers. In addition, you also have the option of adding or omitting words and numbers from DataMapper. By doing so, DataMapper can find exactly the terms that are sensitive to your business.

What kinds of files can I scan?

DataMapper supports files smaller than 30MB and with following formats:

txt, rtf, pdf, doc, docx, gdoc, odt

Email types:
msg, txt (email bodies)

pptx, ppt

xls, xlsx, gsheet

html, htm

jpg, jpeg, png, heic

What can we expect to find?

You cannot say in advance what DataMapper will find. But from experience we can see that on average 5% of all documents, emails and images contain sensitive information.

What should I do with files containing sensitive information?

You should first get a handle on where the files with the sensitive information are located and who has access to the files. This will help you decide whether to restrict access to the files, delete data or otherwise. DataMapper can help you with all of this.

Should I delete files with sensitive information?

Not necessarily. Privacy regulations makes you responsible for protecting the data with sensitive information shared with you. Your company probably needs to store certain information – information about employees and customers, for example – in order to function normally.

However, it is normal for companies to have sensitive data that they should no longer have. How long you store data depends on the data rules that apply to your companies.

If you store sensitive data for too long, even if it is stored securely and not misused, you may still be in breach of the requirements. By reducing the amount of sensitive data you collect and store, you can minimize the damage from a data breach.

Why does it ask me to add names of employees and customers?

Sensitive data is not in itself sensitive information. It only happens when they are put in relation to a person. By adding names, data is put into relation. This enables DataMapper to categorize whether or not sensitive data is sensitive information.

If no names are entered, DataMapper can still find high-risk documents by searching your systems for sensitive keywords. For example, keywords related to medical conditions and personal history. But you get a more complete result by entering the names of, for example, employees and customers.

How many users should I add?

The administrator can invite all employees who have a company email to use DataMapper.

Is DataMapper difficult to set up?

No, with DataMapper you can get started on your own in just a few minutes. If you have any questions during or after implementation, our customer support team is always ready to help.

What systems does DataMapper integrate with?

DataMapper integrates with:

  • Microsoft OneDrive
  • Microsoft Outlook
  • Microsoft SharePoint
  • Google Drive
  • Google Mail
  • Azure Blob Storage
  • Local drives
  • Network drives (Windows Fileshare)

What is the security behind DataMapper?

DataMapper processes all of personal information as confidential, including basic details such as names and email addresses. The system is crafted to adhere to the highest standards of data security. Read more about the security in DataMapper here.

What is Auto-scan?

Autoscan is a feature that allows folders in Outlook to be scanned automatically. This means that the folders are always fully scanned. To activate auto-scan for Outlook, go to your Data Locations tab and reauthorize and scan your Outlook folders once. Your risk documents tab and dashboard will now be updated each evening to show any new sensitive data found in the day’s emails, plus the progress you’ve made cleaning up your inboxes.

Where can I get DataMapper?

To get started with DataMapper, you can buy a GDPR Risk scan or a subscription on the Azure Marketplace. If you would like an online demo of DataMapper, or if you have any questions, please fill out our contact form here.

How much does DataMapper cost?

DataMapper is the cheapest Sensitive Data Discovery tool on the market because of its simplicity. The price of DataMapper depends on which integrations, number of users etc. you need.

DataMapper is part of PrivacyHub

DataMapper belongs to the SaaS platform, PrivacyHub, which is a platform for handling the company’s sensitive personal data. PrivacyHub has divided the processing of personal data into three phases. With RequestManager, it is possible for a company to receive data requests. To locate data, data must be found – here DataMapper is used. ShareSimple is used to securely share (or receive) personal data. With PrivacyHub, a company gets the opportunity to automate the process from personal data entering the company’s data systems while personal data is in the company until personal data leaves the company again. The three services work separately, but can work in a symbiosis. PrivacyHub is created so that companies can start with one solution and add another if the need arises.

How ShareSimple works with DataMapper
DataMapper users find loads of sensitive data in old emails and attachments. Identifying all this sensitive data with DataMapper makes it quick and easy to clean up your inboxes. But if sensitive data keeps coming in emails, you may find yourself repeating the same steps over and over, just to keep up. By using ShareSimple sensitive information is kept out of your emails and inboxes altogether. 

ShareSimple is a user-friendly add-in for Microsoft Outlook that instantly creates an encrypted connection for sharing sensitive information securely. Why is this so awesome? When you share personal data with regular email, two or more copies are created. This increases the risk of data leaks and breaches. With ShareSimple, no extra copies are made; and all data is encrypted and deleted automatically within a set data retention period.

How RequestManager works with DataMapper
DataMapper makes it easy to keep track of all the personal data you store about your customers, employees and others. But what about someone sends you a request about their data? Many of the companies we talk to say they still don’t have a system in place for receiving data requests and responding to them. Enter RequestManager. RequestManager receives, verifies and delivers all your data requests to one dashboard, then reminds you to respond on time. Then, just use DataMapper to quickly pull up all the data you store about the requester and deliver it neatly and safely before the deadline.

Get our Newsletter!

In our newsletter you get tips and tricks for dealing with privacy management from our founder Sebastian Allerelli.

When you sign up for our newsletter you get a license for one user to ShareSimple, which will give you a secure email in Outlook. This special offer is for new customers only, with a limit of one freebie per company.