Skip to main content
Unlisted page
This page is unlisted. Search engines will not index it, and only users having a direct link can access it.

Dropbox

Authentication & Authorization

Credentials

  • Dropbox connects via OAuth 2.0 with Authorization Code Grant Flow.

  • DataGrail owns a Dropbox OAuth 2.0 App that provides the credentials to authenticate customers allowing the integration to connect by simply logging into their Dropbox account with their admin credentials and accepting to install the app.

  • DataGrail uses Refresh Token Flow to periodically update Access Token after it expires to keep the connection alive.

Scopes

Dropbox API requires specific scopes that need to be approved by you in order to grant DataGrail read on certain objects necessary to complete privacy requests and system detection:

  • account_info.read

  • team_info.read

  • team_data.member

  • members.read

  • files.metadata.read

  • files.content.read

  • sessions.list

Endpoints Utilized

Version

Dropbox integration currently supports API version 2.

Limits

  • DataGrail processes API responses with HTTP 429 status to interrupt requests, waiting and retrying (using an exponential backoff strategy).

  • DataGrail doesn't download and process files larger than 500 Mb.

Access

For an access request, DataGrail will take the following actions:

  • List members of a team to collect members IDs for the next search requests.

  • Get a namespace ID required for the next search requests.

  • Search for files and folders per each of the member IDs:

    • Search the local part of the Data Subject email (before @).

    • Search the full Data Subject email.

  • Select unique files from the search results.

  • Download files and do local text search of the Data Subject email to verify matching.

  • Search the full Data Subject email string through Dropbox Paper docs per each of the member IDs.

  • For all objects found, DataGrail will return all available fields. You can edit which objects and fields you want to provide to the Data Subject via our Portal Requests.

Endpoints Utilized

Deletion

DataGrail supports the Direct Contact Deletion workflow for Dropbox.

System Detection

DataGrail provides continuous system detection, delivering a real-time inventory of your data assets. For an system detection requests, DataGrail will take the following actions:

  • List members linked apps.

  • Collect applications map using the response fields: "app_name", "linked", "app_id", "is_app_folder", "publisher", "publisher_url".

Endpoints Utilized

 

Need help?
If you have any questions, please reach out to your dedicated CSM or contact us at support@datagrail.io.

Disclaimer: The information contained in this message does not constitute as legal advice. We would advise seeking professional counsel before acting on or interpreting any material.