Privacera Platform master publication

Customer Responsibility

:
Governance and security teams
  • Develop Data Access Governance strategy and information security policies

  • Ensure compliance with relevant legislation and regulations (e.g. GDPR, CCPA, HIPAA) Information technology and development teams

  • Identify, maintain, protect, and securely connect to Privacera all datasources with sensitive information

  • Follow externally-developed code policy when using functionality built on top of Privacera products

  • Provision, manage, de-provision, and secure user accounts maintained within supported Identity Providers (IdPs)

  • Enforce industry-standard authentication practices such as MFA

Account Administrators and Data Owners
  • Implement Privacera features such as discovery scans, tagging rules, and compliance workflows in accordance with governance program

  • Develop access control and encryption policies

All users
  • Employ strong passwords for authenticating to Privacera products and store them securely

  • Maintain physical security of endpoint devices