Data Policy

Data policies are essential guidelines and rules that help manage and safeguard application data. They provide a framework to:

• Classify Data: Categorize data based on sensitivity and relevance, ensuring appropriate handling.

• Validate Access: Confirm that modules and users have the appropriate level of access and permissions, tailored to their role.

• Support Security Measures: Serve as a reference for app policies to ensure application security and prevent unauthorized access or excessive rights.

These policies are crucial for maintaining data integrity, confidentiality, and compliance with regulatory standards.

Data policies are automatically generated the first time an app is processed by AppControl. When a data policy is first created it has the following statuses:

• Data Classification: INCOMPLETE. You need to classify all data in your domain model according to its access and sensitivity, and flag personal data stored in your app.

• Module Role Access: REQUIRES VALIDATION. You need to validate the mdoule and entity access that has been granted to each module role.

• User Role Access: REQUIRES VALIDATION. You need to validate the module roles that have been granted to your user roles, which users they can manage, what level of data they can access, and categorize your user roles.

To complete your data policy so that it is complete and validated, perform the following steps: Classify Data, Validate Module Roles, Validate User Roles.