Sensitive information in the wrong place
Businesses have to share information all the time. They share information internally between individuals, teams, and departments, and they share information externally with clients, partners, authorities, sales leads, and the general public.
Making sure that sensitive information does not end up in the wrong place is a crucial and complex task. And the honest truth is that many companies today, big and small, violate data privacy laws or internal data protection policies as they conduct their day-to-day business.
Vulnerabilities lying in wait
Having large amounts of sensitive data sitting potentially undocumented and unprotected in your systems means you have a massive vulnerability that can be quickly and easily abused. To create resilience against data breaches, you need to start protecting data that does not serve a clear and practical purpose to the person who has access to it. The best and easiest way to do this is with rules-based redaction to ensure that sensitive documents and data are only visible to those who need access. This is exactly what ORIGIN does.
First comes access controls
Access controls are perhaps one of the most important aspects of software design when it comes to creating a robust system that is strong against security threats. And ORIGIN is built to make it easy for users to set access controls.
Our access controls in ORIGIN ensure that users can quickly and easily set who has access to which APIs, datasets, and documents. But our access control settings go far beyond just granting or barring access to specific users or groups. They also enable users to restrict certain information within the shared files from being viewed by certain recipients, roles, or systems using the redacted files.
Next comes rules-based redaction
We have all experienced needing to share a file with someone where there is certain information in the file that must remain hidden from the recipient. With rules-based redaction, instead of going through file after file and blocking particular information, you just specify the type of information that needs to be excluded for a certain group of people accessing the file and our system automatically redacts the information when it is requested from any file. The rules get set by you ahead of time so that once in place, you do not have to wonder every time you send a file whether the private information has been hidden.
Rules in ORIGIN can be set based on where the data is being stored, where it is being sent, who is accessing it, for what purpose, and when. The ability to control those criteria in combination is what makes our rules-based redaction in ORIGIN second to none.
“You can be so granular about how what information should be redacted when and for whom. When data changes within a document your rules will catch the changes.
And of course you can re-use rules that you’ve previously set which saves you a ton of time and helps you guarantee consistency in how your data remains compliant with regulation.”
- Mike Anderson, CTO
What does it look like in practice?
ORIGIN enables you to quickly and simply make customized and differently redacted copies of the same file to send to different recipients. You set the rules which can include:
- Internal vs. external recipient,
- Time-sensitive vs. not time-sensitive,
- Within your national borders vs. outside of them,
And with the click of a button, your file is properly redacted, ensuring data security and compliance.
“Our ability to redact various copies of a file to be in compliance with the legislation that governs where you operate is one of the driving capabilities of ORIGIN – and one of the reasons we have in such a short time experienced so much excitement about our product.”
- Karl Swannie, CEO
Case: Using ORIGIN and rules-based redaction in Banking
Mergers and Acquisitions: During a merger or acquisition, ORIGIN can help you quickly integrate disparate data sources from the merging entities while ensuring no data leakage, making the consolidation process smoother and minimizing integration time.
Risk Management: Data fabric management can combine data from various sources to create a comprehensive view of the bank's exposure to different risks, such as credit risk, market risk, operational risk, and liquidity risk. This helps you identify and mitigate risks as they become apparent.
Regulatory Compliance: Banks must comply with numerous regulations, which require them to maintain and provide accurate data. Data fabric can enable banks to streamline their data governance and data quality processes, ensuring accurate, consistent, and timely data for regulatory reporting.
Real-time Analytics: With the ability to integrate and analyze data in real-time, ORIGIN enables faster decision-making based on current data while ensuring that sensitive or private operational data does not end up in the analytics system.
Where do AI capabilities fit in?
One of the advantages of rules-based redaction is that you can use AI to create and inform the rules, eliminating the tedious process of scanning documents manually and instead enabling your teams to just review and accept results that get produced by our AI powered redaction.
Join us in our next blog post in this series where we explore the power of AI in assembling redaction rules.