Data Masking in Jira DC

Hi community members,

Our team want to take a data xml copy from environment A and import it in environment B. Due to compliance reason, in environment B, we would like to remove/replace data for all text fields (including comments) and number fields, as well as all History records. For text/number fields, we don't mind if only the sensitive data (for example, PII data) get replaced/removed, or the entire text/number data get replaced/removed.

In order to make this happen, what would be the best way if we don't use a 3rd party plugin other than ScriptRunner? I know we can use “Automation for Jira” to clean/replace the data for fields, but when the number of issues is large, it gives a warning sign. Also, similar to ScriptRunner scripts, it may take significant amount of time to process. We have about 2 million issues in the instance. Also, I know we can user ScriptRunner scripts to cleanup the History for a specific issue (see the most recent comment here: https://jira.atlassian.com/browse/JRASERVER-69002), but if we want to cleanup the change history for all issues in the instance, does "run SQL query to clean up the records in the "changegroup" and "changeitem" tables in the database" the best way to make it happen?

Based on this Atlassian article, we can anonymizing Jira data via Jira Anonymizer, but it will also anonymize the project descriptions, and descriptions for most elements (notification schemes, permission schemes, resolutions). We don't want those to be anonymized, we only want data in issues to be anonymized.

If it needs a different plugin, is there anything to recommend? Would "PII Protector for Jira" or "Data Protection and Security Toolkit for Jira (DLP)" be good for our case? We need the anonymization to be reflected in the database, not only on the surface of the UI. Also, there are some process we need to follow before we are allowed to install any new plugins in our testing environment, so we can't really quickly test this out.

Thanks!
Lynn