Unstructured Data Assets
Discover and classify sensitive data in object stores and file shares.
Unstructured data assets are object stores, file shares, and document repositories that hold blobs rather than rows. Aurva discovers and classifies these by sampling individual objects.
Supported sources
- Object stores — Amazon S3, Azure Blob Storage, Google Cloud Storage
- File shares — SMB, NFS, EFS
- SaaS document stores — Google Drive, OneDrive, SharePoint (via connectors)
Classification
Aurva inspects file content (where readable) and metadata to identify:
- PII: names, emails, phone numbers, government identifiers
- Payment data: PAN, CVV patterns
- PHI: medical record fields, lab values
- Secrets: API keys, private keys, OAuth tokens
Files that match high-risk patterns are surfaced as Sensitive Data Risks on the Overview Dashboard.
Posture checks
For object stores, Aurva also evaluates:
- Public access and bucket policy exposure
- Encryption at rest (SSE-KMS, SSE-S3, customer-managed)
- Versioning and lifecycle configuration
- Cross-account access grants