BigID
BigID is a New York City-headquartered data security platform that combines Data Security Posture Management (DSPM), Data Loss Prevention (DLP), access governance, AI security & governance (AISPM), privacy automation, and a unified Data & AI Catalog. Founded in 2016 by Dimitri Sirota and Nimrod Vax, BigID exposes every action available in its UI through a REST API rooted at /api/v1 — covering data sources, scans, catalog, cluster analysis, DSPM cases, and DSARs — plus an App Framework for building custom apps, a connector framework (Java and REST) for new data sources, and an MCP surface for AI agents.
APIs
BigID Authentication API
Authenticate against a BigID deployment using either username/password or a long-lived user token. Exchange a user token for a short-lived system token (JWT) used to authorize s...
BigID Data Sources API
Programmatically manage data source connections in BigID. List, create, test, and export data sources, and inspect the catalog of available connector templates (e.g. rdb-mysql, ...
BigID Scans API
Configure and execute BigID scans. Create scan profiles to control which data sources are scanned and using which classifier template, then start and monitor scan executions and...
BigID Data Catalog API
Query and export BigID's data catalog — the central inventory of objects, columns, and attributes discovered by BigID scans. Includes metadata export, duplicate-detection, and c...
BigID Cluster Analysis API
Retrieve clusters of similar data identified by BigID's cluster-analysis engine. Clusters group structurally or semantically similar columns and objects across data sources to s...
BigID Data Posture API
Fetch and remediate Data Security Posture Management (DSPM) findings via BigID's actionable insights API. List open cases, bulk-update them, and resolve individual cases with au...
BigID DSAR API
Run Data Subject Access Requests (DSARs) and retrieve the resulting reports. Inspect available DSAR profiles and identifier attributes, submit new DSAR scans, poll status, and d...
Collections
BigID DSAR API
OPENBigID Scans API
OPENPricing Plans
Rate Limits
FinOps
Bigid Finops
FINOPSFeatures
Continuous risk detection across cloud, on-prem, and SaaS data with severity-based remediation workflows.
ML-enhanced DLP with custom labeling by sensitivity, residency, and risk; integrates with MIP and Google labels.
Identify over-privileged access, enable zero-trust controls, and mitigate insider risk.
Shadow AI detection, AI model inventory, prompt and response governance, TRiSM (Trust, Risk & Security Management for AI).
DSAR fulfillment, retention, deletion, consent, and 190,000+ out-of-the-box retention policies.
Unified catalog of structured and unstructured data, AI models, prompts, and agents; federates with third-party catalogs.
Cloud, SaaS, on-prem, and developer-environment connectors. Java-based or REST-based connector framework for custom sources.
Patented AI classification across 100+ languages, plus regex, NLP, and customer-built classifiers.
Build custom apps that integrate with BigID via /manifest, /execute, and /ui HTTP endpoints; deploy alongside BigID on Kubernetes.
BigID exposes its data governance and connector surface through the Model Context Protocol so AI agents can drive it.
Use Cases
Discover, govern, and secure AI models, training data, prompts, and agent surfaces across the enterprise.
Find and remediate exposed PII, PHI, PCI, and other sensitive data in S3, GCS, Azure Storage, Snowflake, and Databricks.
Surface duplicate and stale data to shrink the sensitive-data footprint.
Operationalize HIPAA, GDPR, CCPA, LGPD, and other privacy regimes with DSAR, retention, and consent automation.
Spot suspicious access to sensitive data based on behavior, role, and policy.
Determine what sensitive data was implicated in an incident and notify accordingly.
Prevent exfiltration of source code and credentials from code repositories and developer environments.
Integrations
Bidirectional integrations with AWS Security Hub, Control Tower, S3, RDS, and more.
Discover, classify, and govern data inside Snowflake warehouses.
Catalog and protect data in Databricks Lakehouse and Unity Catalog.
Stream BigID findings into Splunk for SOC monitoring and SIEM correlation.
Combine BigID data context with Wiz cloud-posture findings.
Discover and govern PII in Salesforce orgs.
Drive remediation workflows via ServiceNow tickets.
Federate BigID's catalog with Collibra's governance platform.
Sync BigID metadata into Alation's data intelligence platform.
Federate with Informatica IDMC for data management workflows.
Sync classifications and lineage with Atlan.
Apply MIP sensitivity labels driven by BigID classifications.
SOAR playbooks for managing data permissions and scans (via bigexchange/content).
Cookie consent template for GTM (via bigexchange/gtm-consent-template).
Solutions
DSPM + DLP + access governance in one platform.
DSAR, retention, deletion, consent, and regulatory reporting.
Shadow AI, model inventory, prompt/response governance, TRiSM.
Unified catalog spanning structured, unstructured, and AI assets.