The AI-Ready Platform for Data Engineering & Privacy
Discover and mask PII across SQL and NoSQL databases. Build privacy-aware ETL pipelines. Query with IntelliShell, profile slow queries with AI, and migrate schemas, all in one enterprise-grade platform.
Connect to your entire data stack
Scan. Detect. Transform. Deliver.
A complete ETL engine for PII compliance, from raw database to masked destination in seven deterministic steps.
Connect
Point DBShield at any supported database: PostgreSQL, MySQL, MongoDB, Snowflake, BigQuery, SQL Server and more. Credentials are encrypted and never stored in plaintext.
DBShield polls your source using a watermark column (updated_at) to detect new and changed records. Each change event flows through the transform script immediately, with masked data arriving at the sink within milliseconds.
DBShield generates a transformation script in the right dialect for your database: PostgreSQL trigger, MySQL stored proc, MongoDB JS function, Snowflake UDF. Edit and test on sample rows before enabling the pipeline.
Built for production compliance
Every guarantee, out of the box.
Zero PII leakage
Sensitive data is transformed before it ever leaves the pipeline. Nothing raw reaches the sink.
3 M+ rows / second
Vectorised batch engine and in-flight CDC processing handle enterprise-scale data volumes without slowdown.
17+ PII types detected
ML + regex detects emails, phones, SSNs, credit cards, names, addresses, IPs, passports and custom patterns.
GDPR, HIPAA, PCI-DSS ready
Pre-built compliance policy templates and audit logs with immutable append-only records.
Real-time CDC stream
Watermark polling detects new and changed records. Each event is transformed and forwarded to the sink instantly.
Auto-generated scripts
Transformation scripts are generated per DB dialect (SQL triggers, UDFs, or JS functions) so the logic lives where your data does.
Bring Your Own AI
Connect any major LLM using your own API key, encrypted at rest, called directly from your account.
OpenAI
GPT-4o · GPT-4 Turbo
Anthropic
Claude 3.5 Sonnet
Gemini
1.5 Pro · 2.0 Flash
Grok / xAI
grok-beta · grok-2
AWS Bedrock
Claude on Bedrock
Mistral
mistral-large · small
Ollama
Local / self-hosted
Works with your identity provider
Extract. Transform. Load.
A complete ETL and ELT pipeline builder: connect any database, apply masking and transformation rules, and deliver clean data to any destination in batch, scheduled, or real-time CDC mode.
Extract
Connect to any source. Credentials are encrypted at rest, never stored in plaintext.
Transform
Apply masking, type casting, field mapping, and custom business rules, auto-generated per DB dialect.
- PII masking: mask, hash, tokenize, encrypt
- Field mapping & type casting
- Auto-generated SQL triggers & UDFs
- JavaScript transform functions (MongoDB)
- Snowflake UDFs & Python lambdas
- Custom regex & rule-based transforms
- Schema validation before delivery
Load
Write masked data to any destination. Choose batch, cron-scheduled, or real-time CDC delivery.
- Any SQL or NoSQL database
- Snowflake & BigQuery data warehouses
- Amazon S3 & Azure Blob Storage
- HTTPS webhook endpoints
- Real-time CDC: millisecond latency
- Watermark polling for incremental loads
- 3M+ rows/sec throughput
Pipeline execution modes
Instant
Run once on demand: import, snapshot, or backfill use cases.
Scheduled
Cron-based batch ETL: hourly, daily, or custom intervals.
CDC Streaming
Change Data Capture: detect and forward each row change in real time.
Watermark Poll
Incremental load via updated_at watermark: low-latency near-real-time.
Why teams choose Forge over Fivetran, Airbyte or Matillion
Unlike standalone ETL tools, Forge combines your pipeline builder, database IDE, PII discovery engine, and compliance reporting in a single workspace, so your data never has to leave your control, and your team never has to context-switch between five tools.
See exactly how DBShield finds and masks your sensitive data
Click "Run Scan" on a live sample database table. Watch as the engine detects PII in real time, then choose a masking strategy to see the protected output instantly.
id | name | email | phone | ssn | card |
|---|---|---|---|---|---|
| 1 | Alice Johnson | alice@acme.com | +1-555-0101 | 482-73-9281 | 4532 1234 5678 9012 |
| 2 | Bob Martinez | bob@corp.io | +1-555-0182 | 319-44-7622 | 5412 7534 1290 8801 |
| 3 | Carol White | carol@startup.dev | +1-555-0264 | 751-02-3344 | 3782 8224 6310 005 |
Masking Method
Replace 10 point solutions with one platform
PII scanner, data masking, ETL pipelines, SQL/MQL IDE with AI profiler, server monitor, script debugger, schema migration, compliance automation, all in one enterprise workspace.
Autonomous PII Discovery
Scan PostgreSQL, MySQL, MongoDB, Snowflake, Redshift, and 15+ other sources. Detect 17+ PII types (SSN, PHI, credit cards, emails) using ML-assisted regex hybrid classification.
Dynamic Masking Engine
Format-preserving encryption, SHA-256 hashing, opaque tokenization, consistent pseudonymization, and AI-generated synthetic data. Apply rules at field, column, or table level.
IntelliShell SQL/MQL Editor
Browser-native editor with syntax highlighting, Format SQL, a visual Explain tool, and AI code completion. Execute queries live against any connected database.
AI Query Profiler
Automatically surface slow queries, visualize execution plans (index scan vs. seq scan), and receive AI-generated index recommendations with estimated improvement percentages.
Real-Time Server Monitor
Live-updating dashboards for CPU, memory, active connections, replication lag, WiredTiger cache, and ops/sec, across every connection simultaneously.
Interactive Script Debugger
Set breakpoints in MongoDB shell scripts, step over/into/out of functions, inspect live variable values, and trace call stacks, entirely in the browser.
Test Data Generator
Generate realistic fake data using 20+ field types: names, emails, UUIDs, dates, enums, booleans. 5 built-in templates: Users, Orders, Products, Events, IoT Sensors.
SQL → MQL Converter
Translate standard SQL (SELECT, JOIN, GROUP BY, INSERT, UPDATE, DELETE) into MongoDB Query Language, with a plain-English explanation of each conversion.
Snippet Library
25+ production-ready code snippets across CRUD, Aggregation, Index, Admin, Date, and Text categories. Search by name or tag, star favorites, insert into shell with one click.
MongoDB Log Parser
Paste raw MongoDB log output and instantly parse into a filterable table. Filter by severity (INFO/WARN/ERROR/FATAL), component, search text, or slow-query threshold.
Task Scheduler
Define recurring MongoDB jobs with cron expressions. Visual cron builder, per-task timeout, run-now button, and full execution history with output logs.
Data Visualization
Visualize query results as bar, line, area, or pie charts directly from any collection view. Configure X/Y axis, aggregation function, and export to PNG.
SQL → NoSQL Migration Wizard
5-step guided wizard to migrate relational schemas to MongoDB. Map SQL columns to Mongo fields and types, with live row-count progress tracking during migration.
Schema & Index Manager
Modify database schemas and manage performance indexes directly from the IDE. Reschema columns, add composite indexes, and validate before applying to production.
Privacy-Aware ETL Pipelines
Build pipelines that natively understand PII. Source → Discover → Transform → Validate → Sink, all in a visual drag-and-drop flow with 3M+ rows/sec throughput.
Connection Tree + PII Navigator
Visual schema browser across all your databases. PII-tagged fields show lock icons with risk level. Environment labels (prod / staging / dev) prevent accidental data exposure.
Immutable Audit Trail
Every query, scan, masking action, and data movement is logged to an append-only audit store. Tamper-evident records with one-click compliance exports for GDPR, HIPAA, and PCI auditors.
DSR & Compliance Automation
Automate GDPR Right to Erasure, CCPA data requests, and HIPAA access workflows across your entire infrastructure. Unified compliance posture updated in real time.
ERD Viewer
Visual entity-relationship diagram for every connected database. Inspect foreign keys, cardinality, and PII-flagged fields. Generated automatically from your live schema, with no manual drawing required.
Inline Cell Editing
Edit cells directly in the Collection View without writing SQL. Click any value to edit in place, with data-type validation and change preview before committing.
Oracle & SQL Server Connectors
First-class support for Oracle 19c+ (CONNECT BY, NVL, analytic functions) and Microsoft SQL Server (T-SQL, window functions). PII scan and masking work identically across all engines.
Query, explore, and visualize, without leaving your browser
DBStudio is a full-featured data IDE built directly into the platform. No more switching between pgAdmin, DataGrip, Tableau, and five other tools; everything you need is in one browser tab.
- IntelliShell: SQL/MQL editor with syntax highlighting, Format, and live query execution
- AI Query Profiler: detect slow queries, visualize execution plans, get AI index recommendations
- Server Monitor: live CPU, memory, connections, and ops/sec dashboards
- Script Debugger: breakpoints, step-through, variable watch, and call-stack inspection
- SQL → MQL Converter: translate SQL to MongoDB Query Language with plain-English explanations
- Snippet Library: 25+ production-ready snippets. Search, star, insert into shell.
- Test Data Generator: generate realistic test data using 20+ field types and 5 built-in templates
- Data Visualization: bar, line, area, pie charts from any query result in one click
Native syntax for every database
IntelliShell adapts to the database you're connected to. Switch between SQL dialects and MQL, with DB-specific syntax, function hints, and PII masking built in.
-- PostgreSQL: window functions + JSONB
SELECT
u.id,
u.name,
u.email, -- ⚠ PII: auto-masked
u.region,
jsonb_extract_path_text(u.meta, 'tier') AS tier,
COUNT(*) OVER (PARTITION BY u.region) AS region_peers,
RANK() OVER (PARTITION BY u.region
ORDER BY u.created_at DESC) AS recency_rank
FROM users u
WHERE u.status = 'active'
AND u.created_at >= NOW() - INTERVAL '90 days'
ORDER BY u.region, recency_rank
LIMIT 50;PostgreSQL highlights
- JSONB & arrays
- Window functions
- CTEs & lateral joins
- PII masking
Try every tool. Live. Right here.
DBStudio ships 8 professional database tools beyond the SQL editor. Click each tab to see an interactive demo.
Server Monitor
Live CPU, memory, connections, and ops/sec with auto-updating charts refreshed every 2 seconds.
Share database access without sharing passwords
Stop distributing raw DB credentials in Slack. Create scoped access profiles, group users into teams, and grant access in one click, or revoke it just as fast.
Zero credential sprawl
DB passwords live in one encrypted place. No more shared `.env` files, Slack messages, or spreadsheet credential sheets.
Team-based provisioning
Add a new analyst to the Data Analysts team and they immediately inherit all the DB access that team already has; nothing else to configure.
Granular, revocable access
Restrict access to specific tables or collections per profile. Remove someone from a team and their DB access is gone instantly, with no DB password changes needed.
Least-privilege by default
Create read-only profiles for analysts, read-write for engineers. Users can only touch what their profile explicitly allows.
Full audit trail
Every grant, revoke, profile creation, and team membership change is logged immutably, ready for your next compliance review.
Works with every connector
Access profiles work across PostgreSQL, MySQL, MongoDB, SQL Server, Oracle, Snowflake and every other connector with one consistent access model.
- Sharing raw DB passwords over Slack or email
- New hire waits 3 days for a DBA to create a DB account
- Offboarding requires changing shared passwords
- No record of who accessed which database or when
- Everyone uses the same admin credentials
- Accidental access to production tables you didn't mean to expose
- Credentials stay encrypted on the server, never shared
- New hire added to the right team gets DB access in seconds
- Remove from team = instant revoke, no password rotation
- Immutable audit log of every access grant and revoke
- Named profiles with exactly the permissions your role needs
- Collections/tables scoped per profile; analysts never touch prod writes
Prove compliance in minutes, not months
Stop hunting logs across 10 systems. DB Forge gives you a unified, auditor-ready compliance posture, updated in real time as you scan, mask, and move data.
- Automated DSR workflows for GDPR & CCPA
- PHI detection and masking for HIPAA
- Immutable audit logs ready for auditors
- Credit card tokenization for PCI-DSS
- One-click compliance export for auditors
Plans for every scale
Start free, scale as you grow. No surprise fees. Upgrade or downgrade anytime.
Switch to yearly and save up to 10%
Starter
Growth
Professional
Business
Enterprise
Your entire data platform, ready in 5 minutes
Join 400+ engineering and data teams who use Forge to discover PII, build ETL pipelines, and query databases with AI assistance, all in one place.
We'd love to hear from you
Whether you're evaluating Forge, need help with an existing account, or want to discuss enterprise pricing; our team is here.