Data privacy regulations enforce stringent rules and guidelines in protecting and using Personally Identifiable Information (PII) and Sensitive Information. PeopleSoft has delivered many solutions to help customers comply with the Data Privacy Regulations. Recently, PeopleSoft delivered a completely configurable data masking solution using Page and Field Configurator.
An important feature of data masking is the ability to effectively secure and mask PS Query results. Protecting sensitive information used in PS Query means that it automatically protects Pivot Grids and BI Publisher reports that use PS Query as a data source.
Here are the 3 steps that can help you protect PII and Sensitive information in PS Query output.
The first task is to identify the PeopleSoft Query users that are authorized to view PII and Sensitive information in PS Query. PeopleSoft Query Masking configurations allow you to identify the PeopleSoft Security Roles and associate PII/Sensitive data fields to them.
This is an important and powerful step as you can identify the users that are authorized to view specific PII and/or Sensitive data fields used in PS Query. For e.g., you may allow HR Administrators to view employee's ethnicity information but mask it for Payroll Administrators.
Navigation: Enterprise Components > Data Privacy Framework > Query Masking > Authorized Roles
Data Privacy Framework that identifies all the PII and Sensitive data fields, acts as the source for the PeopleSoft Query masking feature. It is necessary that the information stored in this framework is transformed into a structure that the Query engine understands.
The second step is a simple step that involves executing a batch process. The process transforms the information maintained in the data privacy framework into a structure that the PS Query engine understands.
Navigation: Enterprise Components > Data Privacy Framework > Query Masking > Run Data Sync
The third and final step is to enable the Query Masking feature in PeopleSoft by selecting “Yes” to enable Query masking. That's it! PII and Sensitive data fields in PS Query are now protected from unauthorized access.
Navigation: Enterprise Components > Data Privacy Framework > Query Masking > System Settings
Now when a user runs a PS Query with PII or Sensitive fields, data masking rules are invoked and the query output will be masked or unmasked based on the user-defined authorizations. Based on the Authorized Roles setup, a HR Administrator role user can view Birthdate and Marital Status data while Birth Country and Gender information are masked.
PeopleSoft Query Masking is available now in PeopleSoft HCM 9.2 Image 34 and will soon be available in PeopleSoft Financials and Campus Solutions. For more information, please go through the PeopleSoft Query Masking online help