In Security and compliance studio, you can manage which securable objects have access to sensitive data. For each securable object, you can:
| Name | Responsible | Description |
|---|---|---|
|
Set up sensitive data access reasons |
Security administrator |
If you give a securable object access to sensitive data, you must specify the reason why you do so. This topic explains how to set up sensitive data access reasons. Each sensitive data access reason has one of these types:
A set of predefined sensitive data access reasons is available. You are advised to upload these predefined sensitive data access reasons before you add new ones. |
|
Give access to sensitive data |
Security administrator |
You can give a securable object access to sensitive data. If you give a securable object access to sensitive data, automatically also all related securable objects get access to sensitive data. For example, if you give a duty access to sensitive data, the related users, roles, privileges, and entry points also get access to sensitive data. In the steps, as an example, a duty is given access to sensitive data. |
|
Undo access to sensitive data |
Security administrator |
You can undo the access to sensitive data for a securable object. If you, for a securable object, undo the access to sensitive data, automatically also the access to sensitive data is undone for all related securable objects. For example, if you undo access to sensitive data for a duty, the access to sensitive data is also undone for the related users, roles, privileges, and entry points. In the steps, as an example, access to sensitive data is undone for a privilege. |