Skip to main content

Privacera Documentation

Workflow policy use case example

Workflow policy without encryption

Add the workflow policy without encryption

Follow the steps above to add a workflow policy. In the policy, clear the Encrypt Data checkbox, if selected.

Add a resource

  1. Select a datazone that you want to apply the workflow policy to.

  2. Select the Resources tab.

  3. Click Add Resource..

    Note

    You can add a folder or file as a resource. Resource files must be in CSV, Parquet, orc, JSON, or avro format.

  4. Click Save.

When you run the scan on the datazone, the policy will now be applied and the data in the file will not be encrypted.

Workflow policy with encryption

Add the workflow policy with encryption

Follow the steps above to add a workflow policy. In the policy, select the Encrypt Data checkbox, and select an Encryption Scheme to the tag you want to encrypt.

Add a resource

  1. Select a datazone that you want to apply the workflow policy to.

  2. Select the Resources tab.

  3. Click Add Resource button. You can add a folder or file as a resource.

    Note

    Resource files must be in CSV, Parquet, orc, JSON, or avro fomat.

  4. Click Save.

Now, when you run the scan on datazone, the policy will be applied and the data in the file will be encrypted, for those tags that were marked to be encrypted.

Workflow Expunge policy

Enable Workflow Expunge policy

By default, the Workflow Expunge policy is not visible in the dropdown list of policies. To configure the Workflow Expunge policy, do the following in Discovery of Privacera Manager and Privacera Portal:

Privacera Manager

  1. Run the following commands:

    cd ~/privacera/privacera-manager
    cp config/sample-vars/vars.aws.discovery.yml config/custom-vars/
    vi config/custom-vars/vars.aws.discovery.yml
  2. Add the following property:

    DISCOVERY_WORKFLOW_EXPUNGE_POLICY_ENABLED=true
  3. Run the update:

    cd ~/privacera/privacera-manager
    ./privacera-manager.sh update

Privacera Portal

Go to System configuration in the portal and add the following custom properties:

privacera.portal.datazone.policy.workflow.expunge.enable=true

Add the workflow policy

Follow the steps above to add a workflow policy. In the policy, select the Encrypt Data checkbox, and select an Encryption Scheme to the tag you want to encrypt.

Add a resource

  1. Select a datazone that you want to apply the workflow policy to.

  2. Select the Resources tab.

  3. Click Add Resource button. You can add a folder or file as a resource.

    Note

    Resource files must be in JSON format.

  4. Click Save.

When you run the scan on the datazone, the policy will now be applied and the data in the file will be encrypted for those tags that were marked to be encrypted.