Connecting Your Data

Connecting to Google BigQuery

Privacy Dynamics can connect to your Google BigQuery projects and datasets. This guide helps you authenticate and allow Privacy Dynamics to access your data through Google APIs.

Requirements

To complete this guide, you will need the following:

Instructions

Before you can connect to a BigQuery project in Privacy Dynamics, it’s necessary to configure and download service account credentials.

Configure BigQuery Authentication in Google Cloud Platform

There are three simple steps to perform in Google Cloud Platform. This provides Privacy Dynamics access to your specified BigQuery projects.

Step 1: Create Credentials for a Service Account Using the API Manager

  1. Sign in to your BigQuery account and then go to the Credentials page of the Google Cloud Platform API Manager.

  2. Make sure you have selected the correct BigQuery Project (we are using the "Example Project"). We have selected an **Example Project** in Google Cloud Platform API

  3. Select +Create credentials and then select Service account. A **Service Account** enables Privacy Dynamics for app-level authentication.

Step 2: Grant a Service Account Access to Your Project

  1. Enter a name like "Privacy Dynamics Service Account" and then select Create and Continue.

    GPC Service account details

  2. Privacy Dynamics needs permissions to edit your dataset contents and run jobs using your project. Grant the Service Account both of these predefined roles:

    • BigQuery Data Editor
    • BigQuery User

    Privacy Dynamics needs permissions to edit your dataset contents and run jobs using your project.

    Tip

    To limit our access to specific Datasets, the BigQuery Data Viewer or BigQuery Data Editor role can be granted on specific Datasets, instead of the entire Project.

  3. Skip the optional user access step and select Done. GPC Grant user access

  4. You should now see the new service account in the list at the bottom of the credentials page. The Google Cloud Platform API Manager creates your new Privacy Dynamics’ service account.

Step 3: Create a Service Account Credential File (JSON)

  1. In the Google Cloud Credentials page, select the address for the service account that you just created.

    GCP Select Service Account

  2. From your service account Details page, select the KEYS tab.

    GCP Select Keys

  3. Select ADD KEY, then select Create new key.

    GCP Create new key

  4. Choose the JSON Key type and then select Create.

    GCP Create private key

  5. A JSON key file is downloaded to your computer. Select Close.

    GCP save key

Warning

This file contains sensitive information. Save the JSON file in a secure location since this step is the only time GCP generates the key. You will upload the credential file in Privacy Dynamics in the next steps. You should then delete the key file.

Add the BigQuery Connection in Privacy Dynamics

  1. Sign in to your Privacy Dynamics account.
  2. Go to the Connections page.
  3. Select Add Connection.
  4. Choose BigQuery and select Next.
  5. Enter the connection details:
    • Name - enter a name for you to identify the connection.
    • Project ID - enter the ID of your BigQuery project.
    • Dataset - enter the name of the project’s dataset you wish to anonymize.
    • Upload File - use the Choose File dialog to upload the .json Service Account credential file you created earlier in this guide.
  6. Select TEST CONNECTION to verify the credentials.
  7. Select ADD CONNECTION and your connection saves if there are no errors.
  8. Delete the JSON key file from your machine.

Other Configuration

If you have network access controls in place that limit connections to BigQuery, you will need to add Privacy Dynamics' IP addresses to your Allowlist. You can find those IP addresses in this public JSON file.

Previous
Connecting to Snowflake
Next
Connecting to Amazon Redshift