Identities
Tokenize Field
Tokenize a specific field in an identity for PII protection
POST
Tokenizes a specific field in an identity record to protect personally identifiable information (PII). The field value is encrypted using format-preserving encryption, which maintains the same character types as the original value.
This allows you to track which fields are currently tokenized.
Path Parameters
The unique identifier of the identity
The name of the field to tokenize. Must be one of the tokenizable fields.
Tokenizable Fields
Only the following fields can be tokenized:first_name(orFirstName)last_name(orLastName)other_names(orOtherNames)email_address(orEmailAddress)phone_number(orPhoneNumber)street(orStreet)post_code(orPostCode)
Field names are case-insensitive. Both
first_name and FirstName are accepted.Response
Success message confirming the field was tokenized
How Tokenization Works
Format-Preserving Encryption
Blnk uses format-preserving tokenization (FPT) that maintains the character types of the original value: Original Value:[email protected]
Tokenized Value: FPT:[email protected]:aGVsbG8gd29ybGQ=
The tokenized value consists of:
FPT:- Prefix indicating format-preserving tokenization- Format-preserving visible token - Maintains character types (letters, numbers, symbols)
- Encrypted original value - AES-256-GCM encrypted data
Character Type Preservation
- Uppercase letters → Random uppercase letter
- Lowercase letters → Random lowercase letter
- Digits → Random digit
- Special characters → Preserved as-is
- Spaces → Preserved as-is
Security
The encryption uses:- Algorithm: AES-256-GCM
- Key derivation: HMAC-SHA256 for deterministic seeds
- Uniqueness: Each tokenization produces a unique encrypted value
Tracking Tokenization
When a field is tokenized, the identity’smeta_data is automatically updated:
Use Cases
Compliance Requirements
Tokenize PII to comply with data protection regulations:- GDPR: Minimize exposure of personal data
- PCI DSS: Protect cardholder information
- HIPAA: Secure protected health information
- CCPA: Reduce risk of data breaches
Data Access Control
Tokenize sensitive fields to:- Limit access to raw PII in databases
- Allow analytics on tokenized data
- Reduce the impact of data breaches
- Enable secure data sharing with third parties
Audit and Compliance
Maintain compliance while:- Storing data in logs and backups
- Sharing data with support teams
- Exporting data for analysis
- Archiving old records
Best Practices
- Tokenize Early: Tokenize PII as soon as it’s collected
- Selective Tokenization: Only tokenize fields that contain sensitive data
- Access Control: Limit access to detokenization endpoints
- Audit Trail: Log all tokenization and detokenization operations
- Key Management: Securely store and rotate encryption keys
- Backup Keys: Ensure encryption keys are backed up securely
Error Handling
Common errors and their meanings:| Error | Cause | Solution |
|---|---|---|
| ”field X is not tokenizable” | Field is not in the allowed list | Use one of the tokenizable fields listed above |
| ”field X is already tokenized” | Field has already been tokenized | Use detokenize first, then re-tokenize if needed |
| ”tokenization is disabled” | Encryption key not configured | Set BLNK_TOKENIZATION_SECRET environment variable |
| ”identity not found” | Invalid identity ID | Verify the identity ID exists |