Enterprise Recon is a smart data discovery solution by Ground Labs that enables organizations to find and remediate personally identifiable information (PII) and sensitive information across the broadest range of structured and unstructured data whether it’s stored across servers, on desktops, email, and databases, on prem and in the cloud.

A premier PII scanning tool, Enterprise Recon empowers organizations worldwide to seamlessly discover all of their data and comply with an extensive range of data compliance standards, including GDPR, PCI DSS, CCPA, HIPAA, and Australian Privacy. These standards require organizations to have the ability to locate and secure PII data as well as information on gender, ethnicity, health… and even non-PII financial data.

Enterprise Recon is powered by GLASS Technology™, Ground Labs’ proprietary award-winning technology. GLASS Technology ™ is the quickest and most accurate data discovery software on the market, enabling PII scanning, data discovery, risk scoring, and data classification across the broadest set of platforms available.

Enterprise Recon natively supports sensitive data discovery across Windows, macOS, Linux, FreeBSD, Solaris, HP-UX and IBM AIX environments using agent, agentless and distributed options. Additional remote options also enable organizations to search for PII across almost any network, including EBCDIC IBM mainframes.

Enterprise Recon can also discover data located in:

Cloud Storage Providers:

Amazon AWS (S3), Microsoft Azure Blobs/Tables/Queues, Dropbox, Box Enterprise, Rackspace Cloud Files, OneDrive for Business, Google Drive, and SharePoint Online.


Exchange 2007+, GMail, HCL Notes, IMAP and Microsoft Office 365.

Databases / Server:

SharePoint Server, IBM DB2, IBM Informix, Microsoft SQL Server, MongoDB, MariaDB, MySQL, Oracle, PostgreSQL, SAP Sybase, SAP Hana, Tibero, Teradata, InterSystems Caché, Hadoop (a full list of databases can be found here)


Do you have a requirement that isn’t covered by the list above? Send us a message and a member of our team will follow up with you to discuss solutions.

Enterprise Recon’s Software Benefits

  • Identify more than 300 data types including predefined and variants that include sensitive, personal and confidential data from over 50 countries. This includes credit cards, driver’s licenses, passports, names, addresses, phone numbers, dates of birth, national IDs, health data, financial data (e.g. bank account numbers, IBAN, SWIFT code, etc) and more.
  • Broaden your search with GLASS Technology™ powered custom data types to discover sensitive data according to your unique requirements. Enterprise Recon comes ready to use with the most comprehensive range of PII and other sensitive or critical data types. These built-in data types, combined with Enterprise Recon’s custom capabilities, allow you to create data types to meet even the most demanding internal data discovery requirements.
  • Scan PII immediately and fast through the architecture of the Enterprise Recon software, Ground Labs can scan with limited to no impact to your network.
  • Integrate seamlessly with existing DLP solutions, which can compliment Enterprise Recon to strengthen your overall data loss prevention strategy.
  • Go beyond identifying and remediate with comprehensive options — encrypt, mask, secure delete, quarantine — to quickly secure and eliminate all exposed sensitive data and achieve a true zero trust security posture. Reduce risk of exposure by controlling access to sensitive and PII data with the Data Access Management feature.
  • Analyze your data mapping with compliance reporting, risk scoring and risk mapping. Classify and assign risk levels to sensitive data locations. Enterprise Recon works with a variety of reporting platforms, including Excel, Power Bi, Crystal Reports, Tableau and more. You can also integrate with Microsoft Information Protection (MIP) for additional classification capabilities.

Enterprise Recon in Action?

See how Ground Labs can help you take a zero-sum approach to securing PII

Data Discovery software solutions to supplement Enterprise Recon and your business data requirements: Enterprise Recon PCI, Enterprise Recon PII and Enterprise Recon PRO:

Enterprise Recon PCI — the market leader for those needing to manage and maintain PCI DSS obligations and data. It enables class leading data discovery and remediation to meet and maintain PCI DSS compliance.

Enterprise Recon PII — the industry standard that enables CISOs, ITSMs, and Data Governance Officers full data discovery and remediation tools to meet and maintain compliance against GDPR, CCPA, HIPAA, PCI DSS and PDPA with over-300 data types including predefined and variants. You can also create custom data types specific to your industry and company.

Enterprise Recon PRO — the most comprehensive data discovery solution that empowers CISOs, ITSMs and Risk Managers with full visibility of all their data along with risk management. Optimizing MIP for end-to-end classification, and risk scoring and mapping for driving remediation prioritization. Enterprise Recon PRO aligns with CISO and Executive Board scorecards through integration with reporting interfaces such as Excel, Power Bi, Crystal Reports, Tableau and through ODBC-compliant business intelligence tools. ODBC enables data analytics and advanced reporting.

Key Feature Differences
Pre-Configured PCI DSS Patterns
Full Pre-Configured Data Pattern List (GDPR, CCPA, HIPAA)
Custom Customer Data Patterns
Agent, Agentless and Distributed Scanning
OCR and Audio Scanning
Complete data store scanning
Data Remediation
Role Based Access Control
Notification and Alerts
Installation assistance included
On-prem and Cloud enabled
Rest API
Investigate Page
ODBC Reporting I
Delegated Remediation
Data Classification with MIP
Data Access Management
Risk Mapping & Scoring
Complimentary Proof-of-Concept

PII Scanning Software

Features Include:

Pre-configured Patterns — Limited PCI: Detect PCI card brands: American Express, Diners Club, Discover, JCB, Mastercard, and Visa, as well as China Union Pay, Maestro, Laser, Troy, and other private label cards

Pre-configured compliance Patterns: meet and maintain compliance against GDPR, CCPA, HIPAA and PCI DSS predefined data patterns

OCR and Audio Scanning: OCR detects sensitive data in scanned documents and image formats, such as PDF, JPEG, TIFF, GIF, and PNG. Audio recognition technology can identify sensitive data encoded in telephone DTMF tones in common audio formats such as WAV and MP3.

GLASS™ Technology: Ground Labs' proprietary award-winning discovery and pattern matching engine. GLASS Technology™ is the quickest and most accurate data discovery solution on the market, enabling data discovery, risk scoring, and data classification across the broadest set of platforms available.

Data Types: More than 300 predefined types and variants targeting 50 different countries covering cardholder data, national IDs, private healthcare data, banking and financial information, and PII.

Custom Patterns: Quickly and easily craft your own data type patterns with no-code to find data specific to a particular individual or organization, confidential documents, scanned form data, etc.

Existing Platforms: Scan across a comprehensive collection of supported platforms and environments

Remediation: Remediate data via redaction, secure erasure, quarantining and encryption. Location marking for compliance reporting

Reporting: Save reports on a per-scan basis, or on a consolidated basis combining the result of multiple scans together to represent the best-known state of a target system. Report formats include PDF, HTML, TXT and CSV

Rest API: API to allow access to Enterprise Recon's scanning and reporting capabilities in an automated fashion.

ODBC SQL Reporting Interface: Easily integrate Enterprise Recon with third-party applications. Enables charting and reporting features from third-party business intelligence platforms such as Excel, Power Bi, Crystal Reports, Tableau. Reporting interface enables teams to perform data analytics and produce advanced reporting based on the Enterprise Recon data.

Investigate Page: This advanced integration is designed to allow deep-level browsing, sorting, filtering, exporting and analysis of data discovered.

Delegated Remediation: Assign file/email/resource owners to easily review and remediate their own data. This enables organizations to establish better data governance by passing the responsibility back to data owners and protecting the principle of "need to know" access.

Data Classification: Through MIP, apply persistent metadata to documents and files to facilitate interaction with other classification-aware products such as DLP without the need for direct integration.

Risk Mapping & Scoring: Rank the importance of findings in relation to each other based on your unique business requirements. Prioritize review and remediation of match results by your defined risk score for each matching location. This better enables organizations to prioritize remediation efforts. Depending upon the accompanying platform, review and control who has access to your sensitive data.

Notification & Alerts: Configure how and who to alert when certain events happen. Event details are outlined here.