Skip to main content
Druva Documentation

Manage sensitive data

                                    

inSync Cloud Editions: File:/tick.png Elite Plus File:/cross.png Elite File:/cross.png Enterprise File:/cross.png Business

Overview

Sensitive data is defined as any information that is private and must be protected from unauthorized access. Protection of sensitive data is required for legal reasons, for issues pertaining to personal privacy, or for information that is protected by the company policy.

inSync provides a few default predefined sensitive data and the ability to create custom sensitive data to address your organization's intellectual property information. The predefined sensitive data cannot be edited or deleted; however, you can modify or delete custom sensitive data.

You can use a predefined sensitive data or create custom sensitive data. You can also check also test out the sensitive data.

For example, you can create custom sensitive data for Intellectual Property (IP) information. This can include types of research data (such as research data that is personally identifiable or proprietary), patent information, copyrights and trademarks, information concerning third-party agents and partners, product designs, system access passwords, and so on.

Note: You cannot delete or edit sensitive data that is associated to a policy template.

The following sensitive data are available for a specific geographical region and a specific template:

Region Template Available sensitive data
Global Financial data Credit/Debit card numbers with qualifying terms
Personally Identifiable Information (PII) Passport Details
Credit/Debit card numbers near PII
USA Document Classification Confidential Document Markers
Personally Identifiable Information (PII)
  • Drivers License
  • Social Security Numbers
  • Employee Identification number
HIPAA
  • EDIX12 HIPAA
  • Prescription Drugs
  • PHI related terms
  • Pharmaceutical Companies
  • Medical Ailments and Diseases
  • NPI with qualifying terms
Personal Health Information (PHI) PHI related terms
UK Document Classification Confidential Document Markers
UK National Health Service Community Health Index
Personally Identifiable Information (PII)
  • NHS number
  • National Insurance numbers
Germany Document Classification Confidential Document Markers
Personally Identifiable Information (PII) Social Insurance numbers
South Africa Document Classification Confidential Document Markers
Japan Document Classification Confidential Document Markers
Personally Identifiable Information (PII) MyNumber with qualifying terms
Global Not Applicable Credit/Debit card numbers

Create custom sensitive data

In addition to predefined sensitive data, you can create custom sensitive data to address your organization's intellectual property policies or any other requirements.

To create sensitive data

  1. On the inSync Management Console  menu bar, click Governance > Compliance > Configure > Sensitive Data. The Sensitive Data page opens. This page lists all the predefined and custom sensitive data types.
  2. Click New Sensitive Data. The New Sensitive Data page appears.
  3. Under the General section, enter the following information:
    Field Description

    Name

    Type the name for the sensitive data.  

    This is a mandatory field.

    Description

    Type the description for the sensitive data.

    This is an optional field.

    Category

    Select the category that best matches the sensitive data.

    This is a mandatory field.

    Region

    Select the primary region for the sensitive data.

    This is a mandatory field.

  4. Under the Sensitive Data Definition section, you can define sensitive data using the following methods:

    sensitive data definition section.png
    • Keywords: Select Keywords and in the Keywords field and type the keywords that you want inSync to search in the files. Keywords are not case sensitive. Multiple keywords must be comma-separated. You can define how you want inSync to search for the keywords. In the Matching Criteria option, select one of the following:

      • Match at least one keyword in document: Select if you want inSync to flag a violation if any of the defined keywords match with any word in the document. 

      • Match all keywords in document: Select if you want inSync to flag a violation if all of the defined keywords match with any word in the document. 

    • Regular Expression: Select Regular Expression and enter the regular expression in the Regular Expression field. In inSync, you can use regular expressions to define complex search patterns that match the criteria of the keywords that you want inSync to find and flag a violation. For regular expressions, inSync has global flag enabled.

  5. (OPTIONAL) In the Test Data field, enter any text that you want to scan for violations associated with this sensitive data, and click Test Now. inSync highlights the violated and whitelisted keywords and also displays the count of each. 

  6. Click Save.

A custom sensitive data is created and is displayed on the Sensitive Data page.

Test sensitive data

You can validate any predefined or custom sensitive data to verify if it's working as expected. For validation, you can use any sample text that inSync must report violations for, that sensitive data. During the check, inSync highlights the violated and whitelisted keywords and also displays the count of each. 

  • To test sensitive data, you can enter a maximum of 500 characters.  
  • When scanning for violations, inSync always matches the shortest keyword in the content even if the same string is a part of a longer keyword. 

test sensitive data.png

The following options are available to test sensitive data:

  • While creating custom sensitive data: When you create a custom sensitive data, you can use the Test Data field to check the defined sensitive data.  Enter any information that you want to scan for violations associated with this sensitive data, and click Test Now. inSync will display the count of violations and the count of whitelisted keywords in the content. 
  • Testing created custom sensitive data: Click the name of the custom sensitive data that you want to test and then click Test Sensitive Data. Enter the information that you want to scan for violations and click Test Now. inSync displays the count of violations and the count of whitelisted keywords in the content as per the matching criteria defined in the sensitive data.
  • While editing custom sensitive data:  If you have made modifications to any custom sensitive data, you can validate if inSync is reporting the desired violations.  After saving your changes, click Test Sensitive Data to validate the changes that you have made. If you want to validate keywords or regular expressions, use the Test Data field while modifying the sensitive data.  
  • Checking predefined sensitive data
    1. Navigate to Governance > Compliance
    2. On the left pane, click Configure > Sensitive Data
    3. Click the sensitive data that you want to test. 
    4. Click Test Sensitive Data
    5. In the Test Data field, enter the text that you want inSync to check and click Test Now
      inSync displays the count of violations and the count of whitelisted keywords in the content. 

View the list of available sensitive data

You can view all the available sensitive data, which includes both predefined and custom data.

To view the list of sensitive data

  1. On the inSync Management Console  menu bar, click Governance > Compliance > Configure > Sensitive Data. The Sensitive Data page opens. This page lists all the predefined and custom sensitive data types.
  2. To view the sensitive data per the geographic region, click the Filters icon and select the region from the list. 

Modify a sensitive data

As a cloud administrator, you can modify a custom sensitive data. However, you cannot modify any of the predefined sensitive data types. 

To modify sensitive data

  1. On the inSync Management Console  menu bar, click Governance > Compliance > Configure > Sensitive Data. The Sensitive Data page opens. This page lists all the predefined and custom sensitive data types.
  2. Click the required custom sensitive data. The details of that sensitive data are displayed.
  3. To modify the general details of the sensitive data, click Edit in the General section.
  4. Make the required changes and click Save.
  5. To modify the sensitive data matching criteria, click Edit in the Sensitive Data Definition section.
  6. Add or remove keywords, change the matching criteria, edit the regular expression and click Save.

The updated details on the details page of that sensitive data. inSync runs a global query and checks for compliance violations after you edit a sensitive data that is associated with a policy template.

Delete a sensitive data

As a cloud administrator, you can delete a custom sensitive data. However, you cannot delete the predefined sensitive data that is shipped along with inSync.

Note: You cannot delete a custom sensitive data, if it is associated with one or more policy templates.

To delete a sensitive data

  1. On the inSync Management Console  menu bar, click Governance > Compliance > Configure > Sensitive Data. The Sensitive Data page opens. This page lists all the predefined and custom sensitive data types.
  2. Click the required custom sensitive data. The details of that sensitive data are displayed.
  3. Click Delete
  4. On the confirmation message that appears, click Yes.

The custom sensitive data is deleted from inSync.