Platform
- The Osano Platform Overview
  
  Get an overview of the simple, all-in-one data privacy platform
- Features & Integrations
  
  Key Features & Integrations
Solutions
- By Regulation
- CPRA
  
  Discover how Osano supports CPRA compliance
- CCPA
  
  Learn about the CCPA and how Osano can help
- GDPR
  
  Achieve compliance with one of the world’s most comprehensive data privacy laws
- By Role
- For Non-Privacy Experts
  
  Simple and robust compliance for marketers, IT, product, developers, and more
- For Legal & Compliance
  
  Bridge the gap from regulatory knowledge to privacy operations with smart automation
- For GRC, Risk & Security
  
  Manage the full spectrum of risk—privacy included
- By Use Case
- Consent Management
  
  Manage consent without the complexity
- DSAR Automation
  
  Never miss a DSAR deadline again
- Privacy Program Management
  
  Build and grow an end-to-end privacy program
- Vendor Risk Management
  
  Regain insight and control over your customers’ data
Resources
- Resources
  
  Key resources on all things data privacy
- Articles
  
  Expert insights on all things privacy
- Resource Center
  
  Key resources to further your data privacy education
- Customer Stories
  
  Meet some of the 5,000+ leaders using Osano to transform their privacy programs
- U.S. Data Privacy Laws
  
  A guide to data privacy in the U.S.
- Product Updates
  
  What's the latest from Osano?
- Become a Privacy Insider
  
  Data privacy is complex but you're not alone
- The Newsletter
  
  Join our weekly newsletter with over 35,000 subscribers
- The Podcast
  
  Global experts share insights and compelling personal stories about the critical importance of data privacy
- The Book
  
  Osano CEO, Arlo Gilbert, covers the history of data privacy and how companies can start a privacy program
- Events
  
  Upcoming webinars and in-person events designed for privacy professionals
Latest Blog post

AI Risk Management Frameworks to Manage Risks in Artificial Intelligence Systems

In 2023, an Australian mayor was getting ready to take legal action...
Read Now
Company
- About Us
  
  The Osano story
- Careers
  
  Become an Osanian and help us build the future of privacy!
- Contact
  
  We’re eager to hear from you
- Our Pledge
  
  No fines, no penalties
- Data Licensing
  
  Add Osano data privacy ratings and recommendations to your application
- Osano Swag Store
  
  Increase Trust. Stay Compliant. Get Cool Swag.
- Press & Media
  
  Inquiries and Osano in the news
- Partners & Resellers
  
  Interested in partnering with us?
Plans
Sign In Book a Demo

How using a blockchain database solved our scalability problem

Scott Hertel

Updated: March 21, 2023

Published: July 16, 2021

Sign up for our newsletter

This blog aims to illustrate pain points we've run into at various stages of development. We hope to help engineers and product folks to overcome similar obstacles by explaining how we overcome our own.

In this first installment, Osano's head of IT discusses a common problem at any company, whether an early-stage company or a more mature stage: scalability.

The problem

Today, regulations like the EU's General Data Protection Regulation (GDPR) and California's Consumer Privacy Act (CCPA, but soon to be replaced by the California Privacy Rights Act) forced most companies, depending on size, to start capturing an end user's consent before collecting and storing their personal data.

If we were to implement a consent-capturing service at Osano, how would we prove to our customers that a specific end user granted their consent? How could we capture every update to that consent so we could verify it throughout that customer's lifecycle?

Compounding that problem, we also faced performance concerns about building such a service. Osano's Consent Management Platform (CMP) is necessarily one of the first scripts to load on a customer's application. We also expected millions of consents to be stored every day, even every hour, on behalf of our customers' end users. So we knew it would have to be scalable, responsive and secure.

We immediately started looking towards blockchain technology to provide cryptographic proof that no one could tamper with a consent record we had stored. This approach would allow us to store an end user's consent, along with any later modifications to that consent, and later recall that information for both our customers and their end-users in an entirely verifiable way.

The solution

Amazon Web Services' Quantum Ledger Database (QLDB) service offers a ledger database along with a blockchain verifiable transaction log in a scalable managed service. A ledger database stores the records and doesn't permit their removal. The history of a particular record is logged, and any changes throughout can be recalled. Plus, using blockchain technology, this record transaction log can be cryptographically verified as to the authenticity and integrity of the history of that record.

QLDB has allowed our team to focus on building new privacy and compliance features and capabilities in our platform without building, maintaining and scaling a service to store consent records securely with a verifiable lineage. This service is essential to Osano's ongoing operations, and we've continued to extend its use with new capabilities we've recently added that also require a data lineage verification function.

Schedule a demo of Osano today

Privacy Policy Checklist

Are you in the process of refreshing your current privacy policy or building a whole new one? Are you scratching your head over what to include? Use this interactive checklist to guide you.

Download Now

Scott Hertel

Scott Hertel is the CTO & co-founder of Osano. An experienced software architect, Scott has been building scalable data-driven software for more than 20 years. Prior to Osano, Scott was the founding CTO of Meta SaaS, a leading enterprise software asset management platform for cloud applications which was sold to Flexera Software in 2018.

Blog

Check out some of our latest articles

Osano is used by the world's most innovative and forward-thinking companies to easily manage and monitor their privacy compliance.

View All Blog Posts View All Resources

Simplify Data Privacy Compliance

With Osano, building, managing, and scaling your privacy program becomes simple. Schedule a demo or try a free 30-day trial today.

Book a Demo

The Osano Platform Overview

Cookie Consent

Subject Rights Management

Assessments

Unified Consent & Preference Hub

Data Mapping

Vendor Privacy Risk Management

Features & Integrations

TrustHub

Privacy Templates

GDPR Representative

Consult Privacy Team

Regulatory Guidance

Integrations

CPRA

CCPA

GDPR

For Non-Privacy Experts

For Legal & Compliance

For GRC, Risk & Security

Consent Management

DSAR Automation

Privacy Program Management

Vendor Risk Management

Articles

Resource Center

Customer Stories

U.S. Data Privacy Laws

Product Updates

The Newsletter

The Podcast

The Book

Events

AI Risk Management Frameworks to Manage Risks in Artificial Intelligence Systems

About Us

Careers

Contact

Our Pledge

Data Licensing

Osano Swag Store

Press & Media

Partners & Resellers

How using a blockchain database solved our scalability problem

Scott Hertel

In this article

Sign up for our newsletter

Share this article

Privacy Policy Checklist

Scott Hertel

Scott Hertel

Share this article

Blog

Check out some of our latest articles

EU Privacy Law

US Privacy Law

Privacy Assessments

AI Risk Management Frameworks to Manage Risks in Artificial Intelligence Systems

Privacy Program Management

Multi-Hyphenate Privacy Professionals: 3 Strategies for Success

Privacy Program Management

EU Privacy Law

US Privacy Law

Subject Rights Management

How Osano Does DSARs

Simplify Data Privacy Compliance