26.5 · May 23 Try it free →
// PII Crawler vs OneTrust

A PII scanner, not a privacy program platform.

OneTrust is a privacy management platform: consent and cookie compliance, DSAR automation, assessments, records of processing, and vendor risk, run by your privacy and legal teams in the cloud. PII Crawler is a single binary that finds where PII actually lives on your files and databases. They barely overlap, and plenty of teams run both.

Last reviewed May 2026 · based on publicly available information.
PII Crawler
  • $497 one-time license, perpetual
  • Single binary · Mac · Windows · Linux
  • Air-gapped · 0 B outbound during scan
  • < 60s from download to first scan
  • Finds PII in files, network shares, SQL databases
Try free → no signup
OneTrust
  • Enterprise subscription · modular · contact sales
  • Cloud platform · privacy program operations
  • Consent, DSAR, assessments, RoPA, vendor risk
  • Run by privacy / legal / compliance teams
  • Privacy management & trust intelligence platform
Public marketing as of May 2026.
// the fundamental difference

One runs the privacy program. The other finds the data underneath it.

OneTrust was built for the privacy office: the DPO, privacy counsel, and compliance team that has to operate and document a privacy program across the organization. Cookie consent and preference management, DSAR intake and fulfillment workflows, PIA/DPIA assessments, records of processing under GDPR Article 30, and third-party/vendor risk. Its job is to run and prove your privacy program.

PII Crawler answers a much smaller, technical question that sits underneath all of that: "Where is PII actually sitting on our files, network shares, and databases?"

These mostly solve different problems. If you need to operate a privacy program, PII Crawler is not that. If you need to find PII on the ground — fast, on a Linux server or an air-gapped subnet — OneTrust is a heavy platform to start from, and its discovery is oriented toward feeding the program rather than a quick technical scan.

// side by side

How they compare on the things that matter to a buyer.

PII Crawler
OneTrust
Scope & purpose
Primary job
Find where PII lives on files & databases
Operate & document a privacy program
Who it's for
Security · IT · engineering
Privacy office · DPO · legal · compliance
Relationship
Mostly complementary — many teams run both
Discovery findings can feed a OneTrust program
Cost & commitment
Pricing model
$497 one-time, perpetual license
Enterprise subscription · modular per-product · sales-led
Renewals
None — the binary is yours
Annual renewal · subject to repricing
Cost as you grow
Flat · unlimited users & scans
Scales with modules, users, and volume
Procurement
Credit card · Stripe checkout
RFP, MSA, security review, implementation SOW
Deployment & data flow
Architecture
Single signed binary · no agent · no daemon
Cloud-hosted SaaS platform
Where data is processed
On the machine running the scan
In the OneTrust cloud platform
Air-gapped capable
Yes · 0 B outbound during scan
No · cloud-hosted by design
Time to first scan
Under a minute
Platform implementation before value
Remote / isolated machine workflow
scp binary · ssh · TUI · no cloud needed
Source must connect to the cloud platform
Discovery coverage
File scanning
PDFs (with OCR), Office, CSV, archives
Via the data discovery module
Network shares (SMB / NFS)
Yes
Via connectors, oriented toward the program
SQL databases
Postgres / MySQL / SQL Server · sampled in memory
Via connectors
Detection approach
Regex + NER (en_core_web_lg) · 30+ PII types
Classification within the discovery module
Privacy program operations
Consent & cookie management
No
Yes · a flagship strength
DSAR / privacy rights automation
No · export findings into your process
Yes · intake & fulfillment workflows
Assessments (PIA / DPIA)
No
Yes · assessment automation
Records of processing (Article 30 / RoPA)
Raw input only · CSV / JSON of what's where
Yes · maintains the records
Vendor / third-party risk management
No
Yes · core module
Operations & integration
CI/CD integration
CLI emits JSON / CSV · --exit-code-on flag fails builds
Possible via API; not the primary motion
Exports / handoff
CSV / JSON out of the box
Reporting within the platform
Support
Email · fast · founder-led
Account manager · services org · enterprise SLAs
Trust
Source of compliance evidence
Verifiable on your own host (tcpdump the binary)
Vendor attestations · SOC2 reports · trust portal
If the vendor goes away
Binary keeps working forever
Platform access ends at contract termination
Comparisons reflect publicly available information about OneTrust as of May 2026, plus our own product. OneTrust is a registered trademark of OneTrust, LLC. PII Crawler is not affiliated with OneTrust, LLC.
// pick the right one

These mostly solve different problems.

Pick OneTrust if
  • You need to run a privacy program: consent management, cookie compliance, DSAR fulfillment, assessments, RoPA, and vendor risk.
  • You're a privacy office, DPO, legal, or compliance team that needs workflow and documentation, not just a scan.
  • You need cookie consent banners and preference management across your websites.
  • You need to automate and document data subject requests at scale.
  • You need PIA / DPIA assessment automation and Article 30 records of processing.
  • You need third-party / vendor risk management in the same platform.
Pick PII Crawler if
  • You need to find where PII actually lives in files, network shares, and databases — the technical discovery underneath the program.
  • Your security review says nothing sensitive leaves the network, and you need an air-gapped scan you can verify.
  • You want a one-time price you can expense, not a modular enterprise subscription.
  • You need to scan a Linux server, legacy NAS, SQL database, or air-gapped subnet quickly.
  • You want PII checks embedded in your CI/CD pipeline so a stray customer CSV fails the build.
  • You're prepping for a GDPR / CCPA audit and need to know where the data is, fast.
Try PII Crawler free → no signup
// FAQ

Questions buyers ask us about OneTrust.

Mostly no. OneTrust runs your privacy program — consent, DSAR automation, assessments, RoPA, vendor risk. PII Crawler finds where PII lives. The only real overlap is discovery, and even there we focus on on-prem files, shares, and databases. They're more complementary than competitive, and many teams run both.
No. Consent and cookie compliance are flagship OneTrust capabilities. PII Crawler is a discovery scanner — it tells you where sensitive data is, not how to collect or honor consent.
No. PII Crawler exports where PII is found; you feed that into your own DSAR process. OneTrust automates the intake and fulfillment workflow end to end. If you need DSAR automation, that's a reason to choose OneTrust.
Yes, well. Use PII Crawler to discover where PII actually sits — especially on systems OneTrust's discovery doesn't reach, like a Linux file server, a legacy NAS, or an air-gapped subnet — and feed the CSV / JSON findings into your OneTrust records of processing and privacy workflows.
Indirectly. It gives you the raw input — what PII is where — which is the hard part to get right. OneTrust maintains the formal records-of-processing documentation. Our exports drop into that workflow rather than replacing it.
PII Crawler scans on the machine you run it on, with zero outbound traffic during a scan — you can verify it with tcpdump. OneTrust is a cloud-hosted platform. If "nothing sensitive leaves the network" is a hard line for the discovery step, run PII Crawler for that part and keep the program in OneTrust.
// the math

$497 once. Not a modular platform subscription.

OneTrust (typical enterprise)
$$,$$$+ /yr
modular subscription · sales call required
×Modular per-product licensing · costs add up
×Cloud-hosted · data processed in the platform
×Annual renewals · subject to repricing
×A platform to implement, not a tool you run today
PII Crawler vs · $200 OFF
$497 $697 once
paid for itself the day you ran it
Unlimited users · machines · scans
Air-gapped on your hardware
Binary is yours · no renewals
Mac · Windows · Linux + CLI + TUI
First scan in under 60 seconds
Buy license → $497
14-day refund · no questions asked
// download

Run it on a real share before you decide.

Full trial. No credit card. Runs on your laptop or server.
macOS
darwin-arm64
piicrawler-cli-macos-arm.zip
Download ↓
Windows
win-x64 · signed
piicrawler-cli-windows-signed.zip
Download ↓
Linux
linux-x64
piicrawler-cli-linux.tar.gz
Download ↓