What data sources and file types can Risk Finder scan?

Risk Finder supports scanning over 1,000 file types and includes built-in OCR to extract text from images and scanned documents. It runs as a Docker container against local volumes, mapped network drives, S3, Azure Blob, SharePoint, OneDrive, and 60+ other sources.

How many classifiers are supported out of the box?

250+ classifiers that cover both domestic and international regulations—including USA PII, HIPAA, GLBA, CCPA, PCI DSS, and GDPR. We continually add new classifiers.

Why is Risk Finder so inexpensive compared to enterprise solutions?

Risk Finder is a focused, stand-alone application built to quickly and accurately identify sensitive information. We use flat-rate pricing instead of per-GB fees because we believe data protection shouldn't be cost prohibitive.

Find Sensitive Data. Fix What Matters.

Q: Who can use Risk Finder?

Risk Finder is ideal for security administrators, compliance officers, IT teams, auditors, consultants—anyone responsible for data governance or regulatory compliance. Delivered as a Docker container, it requires no external integrations, eliminating SaaS-related legal and technical hurdles so you can scan in minutes, not weeks.

250+ classifiers. 1,000+ file types. One flat fee. Deploy in minutes via Docker.

Zero Data Exfiltration Runs On-Prem or Your VPC Flat-Rate Pricing

Start Free Risk Assessment

Download Sample Report

From Scan to Actionable Report

Risk Finder delivers a complete compliance exposure report—not just raw data. Here's what you get.

Executive Dashboard

One-page summary your leadership can actually read. Critical findings count, policy violations triggered, and overall compliance risk level—all at a glance.

Sensitive files count with confidence breakdown
Policy violations by framework (PCI, HIPAA, GDPR...)
Risk level assessment (Critical/High/Medium/Low)

Risk Finder Executive Dashboard showing scan summary and risk levels

Compliance findings by framework including PCI DSS, HIPAA, GDPR

Compliance Framework Detection

One scan covers all compliance frameworks simultaneously. No need to run separate scans for each regulation.

PCI DSS HIPAA GDPR GLBA CCPA PII General

Prioritized Risk View

See exactly which classifiers are driving your exposure and which directories need immediate attention. Stop guessing where to start remediation.

Key classifiers ranked by match count
Top exposed directories with file counts
High/Medium/Low confidence breakdown

Classifiers and directories breakdown showing sensitive data locations

Document Risk Scoring

Every document gets a risk score from 0 to 1. Know exactly which files need immediate action vs. which can wait.

0-0.2

Minimal

0.2-0.4

Low

0.4-0.6

Medium

0.6-0.8

High

0.8-1.0

Critical

Top Exposed Directories

Instantly see which directories contain the most sensitive data matches. Know exactly where to focus your remediation efforts first.

Top 5 directories ranked by exposure
Classifier names for each match
Criticality ranking to prioritize remediation

Top 5 directories with classifier names and criticality ranking

JSON output showing classifier matches with confidence and data snippets

Raw JSON Output

Full programmatic access to scan results. Integrate with your SIEM, ticketing system, or custom workflows.

Classifier name and confidence level
Data match snippet for verification
Full file path and match location within file
Optional surrounding context around matches

Deploy in 3 Steps

No agents. No complex setup. Just results.

Step 1

Pull & Run

One Docker command. Running in under 5 minutes.

Step 2

Point & Scan

Connect to any data source. 250+ classifiers run simultaneously.

Step 3

Export & Act

PDF for auditors. JSON for your SIEM. Remediate what matters.

250+ Classifiers. 1,000+ File Types.

From PDFs to X-rays, from archives to images—our classifiers find what others miss.

PII & Identity

SSN, ITIN, SIN
Driver's Licenses (50 states)
Passport Numbers
EU National IDs

Financial & Tax

Credit Card Numbers
Bank Account / Routing
IBAN / SWIFT Codes
W-2 / 1099 / EIN

Healthcare / PHI

ICD-10 / ICD-11 Codes
Medical Terms & Conditions
NPI / DEA Numbers
Lab Results

Full OCR Support

Find sensitive data hiding in scanned documents, images, and PDFs that other tools skip or charge extra to process.

What Security Leaders Say

" I used Inspect-Data's Exact Data Match (EDM) feature in my test environment to fingerprint PHI—and it was a game-changer because it eliminated hundreds of false positives and cut hours of manual review, letting me focus on genuine risks. "

Shub Chowdhury

Principal Data Protection at Kaiser Permanente

" It's fast, accurate, and keeps everything self-contained so you're not shuffling data around. The flat pricing removes guesswork, and the tool cuts through noise to show only the issues that matter. "

David Mole

View on LinkedIn

" Compared to what is in the market, this technology is accurate, fast, light weight and extremely budget friendly. World class data classification doesn't have to break the bank. "

John Franklin

View on LinkedIn

Frequently Asked Questions

Who can use Risk Finder?

Risk Finder helps organizations discover and control sensitive data—whether for compliance, breach response, or preventing sensitive data from being exposed to AI models during training. Common use cases include:

Security & Compliance Teams — IT admins, auditors, and consultants use it for risk assessments, discovering where sensitive data lives, and proving compliance with regulations like HIPAA, PCI DSS, and GDPR.

IR & Legal Teams — Speed up breach notifications with identity attribution: scan millions of documents to determine exactly who needs to be notified, not just what data was exposed.

MSSPs — Help clients achieve compliance and run data risk assessments with flat-rate pricing that protects your margins. Platform-agnostic, so you're not locked into any single ecosystem.

Healthcare & Biotech — Use Exact Data Matching to identify PHI, genomic data, and research records across repositories with near-perfect accuracy—eliminating false positives when patient privacy is on the line.

AI & Data Governance — Ensure sensitive PII and intellectual property are scrubbed from datasets before they reach LLMs or internal AI models.

How do I get started?

With a single docker command, download and run—no sales calls, no setup and no complex configurations required. Start your free risk assessment today.

What data sources can Risk Finder scan?

Local volumes, mapped network drives, S3, Azure Blob, SharePoint, OneDrive, Google Drive, Dropbox, Box, SFTP, SMB file shares, and 60+ other sources. If you can mount it or connect to it, Risk Finder can scan it.

Does my data leave my environment?

No. Risk Finder runs entirely in your environment as a self-contained Docker container. Your data never touches our servers. Zero data exfiltration, zero cloud dependencies.

How many classifiers are supported?

250+ classifiers with 8 built-in policies (HIPAA, GLBA, PCI DSS, USA PII, CCPA, GDPR, PIPEDA, PHIPA). All classifiers run simultaneously in a single scan—no need to pick and choose.

Does Risk Finder scan images and scanned PDFs?

Yes. Built-in OCR is included in all plans at no extra cost. Risk Finder automatically extracts and classifies text from images, scanned PDFs, and photos of documents.

What is Exact Data Matching (EDM/HDM)?

EDM lets you match discovered data against your known sensitive records (like customer databases or employee lists) with near-perfect accuracy—not just pattern matching. HDM (Hashed Data Matching) does the same without exposing the original data. Both are included in Custom Intelligence and Managed plans.

Can I export results to my SIEM?

Yes. Results are available in JSON format for easy integration with Splunk, Sentinel, or other SIEM tools. PDF reports are also available for auditors and compliance documentation.

Why is Risk Finder so inexpensive?

We use flat-rate pricing instead of per-GB fees because we believe data protection shouldn't be cost prohibitive. Scan all your data without budget surprises.

Ready to See What's Hiding in Your Data?

Deploy in minutes. Free risk assessment. No credit card required.

Start Free Risk Assessment