Data Privacy Management 10.4.0 has been released to shipping and is available immediately.
Operationalize data privacy with Data Privacy Management 10.4.0
Secure@Source is now rebranded as Data Privacy Management (“DPM”). Data Privacy Management enables CDOs and the IT organization to operationalize Data Privacy Governance with a focus on subject data for structured and unstructured data sources across the enterprise. The key features available with this release are:
Subject Metadata Model:
Data Categories: DPM now ships with various capabilities to associate data categories to data that can be customized to individual customer needs. Classify subject data into various data categories to accelerate time-to-value. Automated association of categories to subject data enables privacy analysts to report on data that an organization holds about a specific subject, such as DSAR reports that contain information about these categories of data.
Purpose: For visibility into authorized use, data privacy regulations often mandate recording of the purpose for which data about a subject is stored in various systems. DPM 10.4.0 enables recording of the purpose for which subject data is collected and reporting as per regulatory requirements.
Legal Hold: Legal holds can be applied on data subjects as per the legal requirements of an organization. Legal holds are now visible to privacy analysts as they interact with the system on various subject requests.
Third-party Shares: Data stores can now be marked as “Shared with Third Party” so that analysts and operators are aware of subject data that is shared with external entities or organizations for meeting regulatory requirements, understanding risk, and reporting. When a data store is marked as third-party shared, users can store information on the thirty-party organizations to which this data is shared, along with a description of the sharing requirement, so that it can be reported on, as required.
Subject Residency: DPM 10.4.0 enables automatic tracking of residency of a subject so that the applicability of various regulations on the subject can be easily identified and policy applied.
Historical Requests: All historical subject requests are now tracked in DPM 10.4.0. Privacy analysts and operators can now look at all the requests made by a subject and can decide if they need to respond to specific subject requests when received.
Data Privacy Management 10.4.0 ships with a broad set of RESTful API’s to automate privacy-related actions. Customers can now use these APIs to create or integrate DPM with their existing self-service portals or processes. This provides the appropriate subject data and visibility required for completing statutory obligations required for privacy regulations.
DSAR report templates
DPM 10.4.0 ships with multiple DSAR report templates that can be used to create various types of DSAR reports. These templates enable privacy analysts & data privacy officers to generate DSAR reports based on organizational needs, for example, report with metadata information only, report with data grouped by data categories, and report in PDF or CSV format.
With DPM 10.4.0, Subject Requests can be delegated using DPM’s integration with ServiceNow. DPM can now create a ServiceNow ticket automatically based on a Subject Request and also provide a status update to privacy analysts based on the status of the ServiceNow ticket.
Customers can also delegate tasks through email or create a custom script to automate their processes.
With DPM 10.4.0, administrators can configure multiple seed data stores in the system to identify subject data. This enables creating a subject registry by collating information from multiple sources of data.
DPM 10.4.0 enables application owners and privacy analytics teams to create a breach report if a security event warrants it. This happens efficiently with the click of a button, creating a report that enables DPOs, controllers, etc., to gain visibility within an accelerated time period.
Purge DSAR reports:
Supporting the philosophy of Privacy by Design, DPM 10.4.0 enables privacy administrators to create a retention period within DPM such that DSAR reports created are purged automatically after a specified period of time. This ensures that DPM is compliant with privacy regulations and does not store subject data when not required.
Expanded PAM support for Subject Registry
DPM 10.4.0 works on Informatica Platform 10.4.0 and EDC 10.4.0. DPM 10.4.0 now supports various big data, cloud databases, and cloud applications to scan for subject data and report on the same. Refer to Data Privacy Management 10.4.0 PAM for further information.