Suggest an Idea

DCov · ‎2021-06-08

When looking at the run details of both Full Load and CDC Loads into the Data Warehouse via Compose, any user who has at least viewer access to Compose can see the actual data that is loaded to the target tables. Our environment contains sensitive data which includes Personally Identifiable information (PII). Under GDPR requirements this data needs to be managed and controlled under the least privilege principle and therefore the data in the target Database and tables must be secured by Database roles and an auditable access process. The ability for any Compose user to be able to access this data in Compose bypasses our role based access and exposes a security and regulatory risk.

We would like to be able to select which users / groups have access to drill down in the run details window to see the table data.

TimGarrod · ‎2022-01-18

@DCov - thank you for the Ideation.

To ensure I understand correctly - this would be a SPECIFIC role that would enable / disable the following -

Links in Monitor to view data
Click-through on table lists etc.
Pivot table function

Is the request to provide a specific "data role" - or encapsulate that ability within say the "Developer" role that exists in the product today ?

Opening this for feedback from the community at large also .

Suggest an Idea

Secure who can see table data loaded into the Data Warehouse via the Compose console

Secure who can see table data loaded into the Data Warehouse via the Compose console