The Access Policy transformation applies data protection policies created in
Data Access Management
according to the properties of the Access Policy transformation. An access policy is a set of policies and associated data protection rules that apply data protection techniques and transform the data accordingly.
These techniques can replace, transform, or redact values in a data set while maintaining the overall usefulness of the data. An access policy can protect different values in different mappings, based on factors such as the intended user of the data and metadata classifications that users assign to the source data. Access policies can help your organization comply with data privacy regulations such as the European General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA).
Rules apply pre-defined transformations to data classes. A data class is a categorization applied to fields within data assets to indicate the category of data such as birth dates, national identifiers, and postal codes.
Rules in an access policy can apply multiple data protection techniques, including the following operations:
Retaining data
Redacting all values of a given type such as birth dates
Replacing specified field values with null
Truncating values such as redacting the first three characters of a postal code
Replacing values with consistently tokenized values such as always replacing "Smith" with "Abcd" or "1234" with "5678"
Generalizing date values to the month, year, or decade
Replacing values with a constant text value such as replacing all passwords with five asterisks
An Access Policy transformation doesn't display the policies, since those are dynamically applied based on the data and metadata. Users with the appropriate permissions manage policies in
Data Access Management
.
Not all organizations have
Data Access Management
. Your organization has
Data Access Management
if it appears on the
My Services
page. If it doesn't appear, contact Informatica Global Customer Support to request