Sensitive data is often unintentionally moved with financial services companies as they move to the cloud, posing costly breaches and governance, risk, and compliance (GRC) requirements. Datadog's Sensitive Data Scanner helps organizations identify sensitive data leaks and redact them at scale by discovering, classifying, and redacting sensitive data across logs, traces, RUM, and events. Financial services companies use Sensitive Data Scanner to detect credit cards, bank account numbers, and other personally identifiable information (PII) in observability data, classify matches against common compliance standards such as PCI-DSS and GDPR, and redact results to prevent sensitive data leaks into Datadog. They create multiple scanning groups to fine-tune rules for classifying their data and define actions Sensitive Data Scanner takes when it finds a match, including redacting, partially redacting, or hashing the matched value. By using Sensitive Data Scanner, financial services companies can improve accuracy by using keyword dictionaries and rule targeting, and follow up on sensitive data issues to comply with PCI-DSS obligations.