DOCS

Privacy Regulations

General Data Protection Regulation (GDPR) is a privacy regulation to protect the Personal Data. Enterprise Data Intelligence (EDI) supports compliance with privacy regulation by defining personal data (for example, Personal Information items) in Business Glossary. Personal Information items that have been approved in Enterprise Data Intelligence can be integrated with the definitions captured in the data repository, assisting with the identification of Personal Information in Data Estates. Enterprise Data Intelligence is the primary user interface for implementing privacy regulation compliance solutions.

For integration between Enterprise Data Intelligence and data repository, you need to consider metadata synchronization between the two products. Metadata synchronization is achieved through the EDIBus. For synchronizing personal data definitions with data repository, ASG allows calling preconfigured external web services from Enterprise Data Intelligence, either automatically through Personal Information approval workflow or manually (on demand call) from Personal Information Glossary context menu. When configured properly, the external web services can initiate the Personal Information Identification workflow in the data repository.

Calling External PI Analyzer through Personal Information Approval Workflow:

The image shows an example.

Calling External PI Analyzer from Personal Information Glossary Context Menu:

The image shows an example.

The workflow starts with the synchronization of Personal Information item definitions from Enterprise Data Intelligence to data repository, and then the analyzer plugin is executed to scan the external metadata sources for the matches according to the defined patterns. The results of the scanning process are stored in the data repository as tagged metadata items. The tagged metadata items are then synchronized back to Enterprise Data Intelligence (expressed by links from the Personal Information items to the corresponding technical meta data items). The EDIBus plugin performs the synchronization of Personal Information items and tagged metadata items between Enterprise Data Intelligence and the data repository.

 

Personal Information Identification Workflow

Prerequisites

You must ensure that the following prerequisites are completed before starting the Personal Information Identification workflow:

  • Integrate the External PI Analyzer web service call in Enterprise Data Intelligence. For more information, see Configuring External PI Analyzers.
  • Add regular expressions for structured and unstructured data in Catalog Content Search Filter of Enterprise Data Intelligence. For more information, see Catalog Content Search Filter.
  • For scanning resources that are stored in Mobius, ensure that the Mobius bundle is uploaded, and Mobius cataloger and Mobius Analyzers are configured. To configure Mobius cataloger and Mobius Analyzer, see the respective plugin documentation.
  • EDIBus plugin is configured with required configuration parameters to execute the following steps:
    • Synchronize the Personal Information items from Enterprise Data Intelligence to the data repository.
    • Synchronize the tagged Personal Information items from data repository to Enterprise Data Intelligence.
      To configure EDIBus plugin, see the EDIBus plugin documentation.

In Enterprise Data Intelligence, you can create a Business Glossary to store Personal Information items. Personal Information items can be defined within a Business Glossary, by either importing them or creating them manually. Every Personal Information definition must be approved in Enterprise Data Intelligence. A Personal Information item represents an element of Personal Information (for example, a person's name, preferred color, etc.). In contrast to that, a PI Structure item is a group of related Personal Information items, such as the various components of an address, or the Personal Information. To represent an entity, several Personal Information items can be grouped together under a PI Structure Item in Enterprise Data Intelligence. For more information, see Personal Information Item and PI Structure Item.

Following are the steps that are involved in the Personal Information Identification workflow. The workflow is automated to manually execute the catalogers and analyzers.

Step 1: Synchronize the Personal Information Item Definitions from Enterprise Data Intelligence to Data Repository

To start the workflow from Enterprise Data Intelligence, you must have configured the external PI analyzer web service call in the Personal Information approval workflow for the corresponding Glossary. After the configuration, the web service is called whenever a Personal Information item in this Glossary is submitted for approval. You can also call the external PI analyzer web service manually (on demand call) from the Glossary's context menu. This option calls the external PI analyzer web service and the external web service takes care of the rest of the processes that are automated using workflow engines in data repository. The workflow triggers the EDIBus plugin and EDIBus plugin synchronizes the GDP_PERSONAL_INFORMATION items from the Personal Information Glossary to Personal Information items in the data repository using the toIDPGDPR function. The toIDPGDPR function must be configured in COMMANDS AND FLAGS section of EDIBus configuration to synchronize items from Enterprise Data Intelligence to the data repository.

Step 2: Scan External Metadata Sources and Tag the Personal Information Items in the Data Repository

The workflow runs the Analyzer to analyze and process the cataloged files. The Analyzer identifies the content type, observes the regular expression patterns, searches data in the catalog against the patterns for matching data using regular expressions, identifies the Personal information, and tags them accordingly. The tagged files are then stored in the IDC database. For more information on analyzing and processing external meta data sources (for example: Mobius), see the respective plugin documentation.

Step 3: Synchronize the Tagged Personal Information Items from the Data Repository to Enterprise Data Intelligence

The workflow runs the EDIBus plugin to synchronize tagged information from data repository to Enterprise Data Intelligence (expressed by links from the Personal Information items to the corresponding technical meta data items). To synchronize the tagged information from the data repository to Enterprise Data Intelligence, you must configure the toEDIGDPRTag function in COMMANDS AND FLAGS section of EDIBus Configuration.

The tagged Personal Information items that EDIBUS delivers after completing the workflow, can be viewed in the Dashboard and Reports sections.

  • You can view the detailed tagged Personal Information item reports in Reports > Personal Information > Personal Information Details section. For more information on Reports, see Generating Reports for Personal Information.
  • You can also view the pictorial representation of the tagged Personal Information items in Dashboard > Personal Information portlet. To add PI related portlets in Dashboard, see Configuring Portlets on the Dashboard.