.
GDPR wise and “data scraping” wise, Tag-Forge ( the parent company of “Tabbles” and it’s off-shoot here of “Confidential” ) has collected a few scripts that we can manually find and manually download and manually import and manually modify to our local or other personal preferences and then manually implement, read on, read on, the answer’s at the end.
IF these GDPR scripts were included in today’s SOS download, or IF these GDPR scripts were even at least linked to in today’s SOS download or IF these GDPR scripts were linked to in the subsequent post from the programmer, THEN a significant portion of negative feedback — that the program was empty of GDPR-awareness and sensitive-data-awareness — might have been avoided ( see what I did there, an IF / THEN programming statement ! ).
The GDPR scripts:
[ Sensitive Info #1 ]
(Updated 16.05.18) This is a first attempt to put together a list of auto-tagging rules to scrape and auto-tag. Most of the regex where found on RegExLib. This list contains rules to match:
— Name of all the danish cities with more than 2500 inhabitants (around 1000 cities) [FIXED, this caused to trigger any character]
— Credit card numbers from the major credit card companies (Visa, Mastercard, Amex…)
— Danish CPR number (check on wikipedia)
— Email addresses (RFC 5322 Official Standard)
— Italian Codice Fiscale (check on wikipedia)
— USA Social security codes (this regex gives a lot of false positives, but since the pattern is so simple, it’s to be expected)
[ UK Passport, National Insurance Number and Postcodes ( promised, but NOT available ) ]
(Updated 20.06.18) Upon a user request we put together a database of UK Documents :
— UK Passport based on this regex
— UK National Insurance number based on this regex [Updated: less permissive regex, less false positives]
— UK Postcodes
… but not really available, as they duplicate the link to the German download here, so the UK scripts are not really available yet.
[ German Zip Code, tax code and more ]
Various German codes, including:
— German Zip Code (Postleitzahl – PLZ), matches the numeric part
— German personal tax number (Steuernummer)
— German health insurance number (Versicherungsnummer)
— German army ID number (Personenkennziffer)
— German VAT Number
[ JMBG (former Jugoslavia) and OIB (Croatian) ]
Various personal identification codes, including:
— Former Yugoslavia Unique Master Citizen Number (JMBG)
— Croatian Personal Identification Number (OIB)
[Note: currently it checks for 11 digits strings, so it will give false positives]
How to find them:
Download the above mentioned zipped xml scripts at various places from Tag-Forge, such as:
[ https ://www.confidential . tech/gdpr-compliance-for-unstructured-data/ ]
[ https ://tabbles . net/data-mining-file-tagging/ ]
Look for:
— db_Sensitive_Information_1.zip — creation_date=”04/12/2018 14:52:47″
— German_Sensitive_rules_db_.zip — creation_date=”04/23/2018 12:51:15″
— JMBG-OIB-Croatian_Confidential_db_xml.zip — creation_date=”04/12/2018 14:52:47″
Missing is
— UK Passport, National Insurance Number, and Postcodes
( Note the date and time formats are using ambiguous-European-bassakwards date, and are using slashes and colons, not using computer-readable and sortable computer date and time, which would be, for example, in the format of 2018-04-12 or 2018-12-04 for date — the original could be April or December, it could be either, I do not know … and 14-52-47 for time … sorry, but slashes and colons already have meanings in the file system and cannot be used for other purposes such as naming files. )
Import them via the following “Confidential” program File Menu sequence:
— File
—- Confidential database
—— Import data from XML zipped
——– browse to your downloaded file, one at a time, multiple files cannot be selected and imported, and it does not remember the previous browse location, so renavigate each time
———- Open
———— wait for import to complete, OK
repeat for each file
There is no test data file in any format to download that contains dummy data that would be should be could be found by any of those scripts, so there is no “master calibration” way to “inspect what we expect” from this software … just trust it, I suppose.
These GDPR scripts are not available in today’s SOS download, these GDPR scripts are not mentioned nor linked to at the main website [ https ://www.confidential . tech/ ] where the headline promises that this is “The GDPR solution for unstructured data” … well, maybe … if you can only find these GDPR scripts on your own …
“Tag-Forge” / “Tabbles” / “Confidential” promise the following:
— Data-mining: auto-tag files based on their content, name and location – get all your sensitive documents on a whole drive automatically tagged within minutes!
— Create auto-tagging rules for folders: Confidential will “listen” and tag each new file you put there.
— Explorer integration: Confidential “listens” when you move files between folders: the tagging is preserved
_________________________________
Critique:
Their in-program “Tag browser” does not behave like the external Windows File Explorer in that the left window does not expand to show subdirectories for us to select or as we browse, and we cannot directly type or paste directory location into the top address field … but at least tapping the [ Backspace ] key does return the display up to the previous displayed directory level to allow us to drill down and back up, but we cannot see any comparative drill-depth location as we would see in Windows File Explorer, that is, “Confidential”‘s own tax explorer does n0t indicate if a directory we are looking at has any sibling directories under the parent directory.
Network drives in this Corporate Edition are not available, so much for a central database and central audit capability … I guess we have to duplicate the installation and customization on each computer in our network — even though Confidential tagging options appear in the context menus when using Windows File Explorer and looking at network directories on other network-attached computers, because trying to tag them only results in a pop-up window from Confidential indicating that an improper thingy was doneish to that them thar whats-ya-ma-call-it because Confidential has no networking awareness.
The Tag browser viewing options are self-named averse to Windows File Browser pre-existing descriptions:
— “Normal” = Microsoft’s “Content”
— “Compact” = Microsoft’s “Tiles”
— “Very compact” = Microsoft’s “List”
— “Gallery” = Microsoft’s “Extra large icons”
I wonder if the programmers call underwear as outerwear?
… I am trying to get prepared to have to translate everything from familiar meanings to their own idiosyncratic iconoclastic personal inventions, as if they are new to the computer industry and don’t know, or resist, or want to better rename everything, so be prepared for a steep learning curve, not just to learn the program, but also and interruptively to relearn what they think are better names for already familiar things.
Misbehavior: If I double-click on the address bar to try to walk back through a directory tree, it apparently thinks I am trying to select and cut-and-paste the parent directory name I am clicking on, and it duplicates it in the mini-strip-window, thereby giving me a false directory structure, for example, I browsed to:
C:\Documents\A\Addresses
… then wanted to walk back to C:\Documents\A\, because I was planning to go down to other C:\Documents\A\… directories, but double clicking on “A” caused the Confidential to display:
C:\Documents\A\A\
… which does not exist, and, luckily, when checking in Windows File Explorer, was not accidentally created.
Misbehavior: it failed to show the file contents of a directory, showing it empty.
Luckily I could not reproduce these errors, as of yet, and they went away after exiting and restarting the program.
I checked Windows File Explorer to see if there was any effect of “Confidential” running live, and nothing looked different.
I right-clicked on a directory and — woah — there were new context menu options salted throughout the already pre-existing list of context menu items, none of them identified or grouped as “Confidential” options, so now I must scrutinize each item in my context menu to see if maybe they relate to “Confidential” or maybe they came from some other program, perhaps CCleaner, Glary Utilities, and so on.
Nope, they are not “Confidential”, but they are:
— HKEY_CLASSES_ROOT\*\shellex\ContextMenuHandlers\TabblesContextMenu
— HKEY_CLASSES_ROOT\Directory\shellex\ContextMenuHandlers\TabblesContextMenu
They are “Tabbles”, not even “Confidential”, it’s a good thing I am researching all of this to see that “Tabbles” is the base program underneath the “Confidential” program … and now my self-assignment is to compensate for such programming myopia and try to reorganize the “Confidential” context-menu entries to be under a “Confidential” sub-tab ( using some other context-menu editing program ).
… also, is “Confidential” a noun or a verb? If I click “Confidential” will it mark the directory with a “Confidential” tag, or will it open a sub-menu for the “Confidential” program options of what other types of tags are available for this directory or file?
Does anyone else see the problem with making the program name — “Confidential” — ambiguous and co-opting of words that already have meaning?
In the context menu for a directory, selecting “Locate in Confidential” opens a new instance of Confidential … surprise ! … so, how many Confidential program instances can I get to run at the same time, and do they cross-coordinate changes made in one “Confidential” window to the other “Confidential” windows, and do any of them immediately send any information to any number of open Microsoft Windows File Explorer windows, instantly, in real time, or can I be looking at the wrong one and see inaccurate data that has already been changed elsewhere?
Hey, let me check on that, because that’s my job as an end user … not!
I’ve got 5 windows of “Confidential” running, but when I click the 6th icon in the notification area, which of the 5 existing “Confidential” windows will I get ( or is that information “Confidential” ! ).
Well, let me check the task manager to see a list of all five “Confidential” programs and their windows … no, wait a minute, there is no “Confidential” listed anywhere in Microsoft Windows Task Manager, only one “tagger.exe” program, and when I ask to open it’s window, I get a different window than the window opened by clicking on the “Confidential” icon in the system tray, go figure.
Cool, it’s like a “Where’s Waldo” video game, “… Guess where “Confidential” is hiding now ! …”
I found a “Confidential” program menu command to cache thumbnails ( ? ) from a network drive, but it does not offer to browse to find network drives … oh well.
It makes little pop-up messages appear in the lower right corner of the screen, but they go away before I can read them, and I cannot make then reappear … oh well.
I did get to read one message, the top one, of dozens of duplicate messages, saying the SQL server could not be found, all the messages filling the right of my screen, then they all went away, but at least I got to read one!
I accidentally successfully tagged something using the context menu in Windows file Explorer, yet I cannot accidentally successfully untag it … oh well.
In the Windows File Explorer context menu, I found a “delete tag” thingy under an “add tag” thingy which warned that I will lose all tag associations but not lose the files ( whew ! … but do I trust this program’s promises ? ), and so I accepted that, and yet another Confidential window opened and showed the tag still in place, and was not in fact deleted or unassociated or removed or extinguished or eliminated or eradicated or exterminated or whatever new name they think is better than all other names … oh well.
Are folks reading here beginning to understand why I assessed this software as
— NRFPTY
— Nerf Putty
— Not Ready For Primer Time Yet?
Well, there’s more ( or there’s less ):
After all of this, I can find absolutely nowhere in the program to actually search for and auto-tag or even manually-tag and or do anything with the GDPR scripts that I manually downloaded and manually installed … nothing, nada, zilch, zero, ain’t no, nyet, nein.
Repeat: no GDPR anywhere.
Ahh, the life of an Alpha tester, waiting patiently for the programmers to produce something worthy of Beta testing …
Sending out an SOS indeed.
.