Shadow data is defined as any data, residing in managed or unmanaged data stores within the organization, that the company isn’t aware of its existence, or is not available. For example:
- Shadow Logs, Backups, Debug prints - byproducts of backend application, such as log files that contain sensitive data
- Copied Shadow Data - customer data that was copied between cloud accounts, regions, VPCs, subnets.
- Legacy Stores - data store with no activity: no configured data flow - no applications attached to it, or no active data flow - no real activity (read/write) access.