Skip to main content

PrivaceraCloud Documentation

Prerequisites and planning

:

Before you begin to define data domains, shared datasets, projects, or roles, prepare the following:

High-level planning for Governed Data Sharing

The general planning for Governed Data Sharing is as follows:

  1. Define easily-remembered names of the data domains to be created by the account administrator, including a useful description of the data domain.

  2. For database applications, decide the depth of the resource to add to the data domain: the entire database, the tables, or the columns and rows, as described in Applications and database resources.Applications and database resources

  3. Decide if the data owners should have optional data stewards to manage the data domain.

  4. Identify data owners, optional data stewards, and optional project leaders to be given access to these data domains.

  5. Assign appropriate Privacera system roles to the data owners, optional data stewards, and optional project leaders, as described in Map of Governed Data Sharing roles to Privacera system roles.

  6. Decide:

    • Which users, user groups, or roles to share the datasets with.

    • Which users, groups, or roles should have read/write permission to the data domain

    • Which users should have only read permission.

  7. Optionally define and describe the projects that each data owner controls.

  8. Decide if you want to create projects from a data domain, a shared dataset, or both.

  9. Decide if you want to assign project leaders to the projects.

  10. Determine which data domains, users, user groups, or roles should be assigned to which projects.

Map of Governed Data Sharing roles to Privacera system roles

Each role for Privacera Governed Data Sharing is a data access user that must be given a certain PrivaceraCloud system role, as shown in the table below.

For details on creating data access users and assigning roles, see Users, Groups, Roles.

GDS Role

Privacera Role

Description

account administrator

ROLE_ACCOUNT_ADMIN

The default account administrator is the person who first signed up for PrivaceraCloud. Other account administrators can be created.

data owner and steward

ROLE_POLICY_ADMIN

Data owners and data stewards are portal users created manually or loaded from an external IdP and given this Privacera role.

data governor

ROLE_DISCOVERY_GOVERNANCE

A data governor is a portal user created manually or loaded from an external IdP and given this Privacera role.

project leader

ROLE_POLICY_ADMIN

A project leader is a portal user created manually or loaded from an external IdP and given this Privacera role.

data user

ROLE_USER

A data user is a portal user created manually or loaded from an external IdP and given this Privacera role, which is the default.