Cloud Manager 3.9 docs
Release notes
- Cloud Manager
- Cloud Volumes ONTAP
Important changes
Get started with Cloud Manager
- Learn about Cloud Manager
- Networking overview
- Sign up to Cloud Central
- Log in to Cloud Manager
- Set up a Cloud Central account
  - Learn about Cloud Central accounts
  - Set up an account
- Set up a Connector
- Where to go next
Manage Cloud Volumes ONTAP
- Learn
- Get started in AWS
- Get started in Azure
- Get started in GCP
- Provision and manage storage
- Replicate data
- Monitor performance
  - Learn about Monitoring
  - Get started
- Improve ransomware protection
- Administer
Provision volumes using a file service
- Azure NetApp Files
- Cloud Volumes Service for AWS
- Cloud Volumes Service for GCP
Manage ONTAP clusters
- Discover ONTAP clusters
- Monitor ONTAP clusters
- Manage ONTAP volumes
Back up to the cloud
- Learn about Backup to Cloud
- Get started
- Manage backups
- Restore from backups
Copy and synchronize data
- Learn about Cloud Sync
- Get started
- Tutorials
- Manage sync relationships
- Manage data brokers
- Uninstall the data broker
- API
- FAQ
Gain insight into data privacy
- Learn about Cloud Compliance
- Get started
  - Deploy Cloud Compliance
  - Activate scanning on your data sources
- View details about private data in your organization
- Gain control of private data with Highlights
- Add custom personal data identifiers
- Generate reports
- Respond to a DSAR
- Disable Cloud Compliance
- Categories of private data
- FAQ
Enable real-time global file sharing
- Learn about Global File Cache
- Before you begin to deploy Global File Cache
- Getting started
- Before you begin to deploy Global File Cache Edge
- Deploy Global File Cache Edge
- End-user training
- Additional information
Optimize cloud compute costs
- Learn about the Compute service
- Get started
Tier data to the cloud
- Learn about Cloud Tiering
- Get started
- Set up licensing
- Test cloud performance
- Manage data tiering
- Get an overview of tiering
- FAQ
- Reference
View Amazon S3 buckets
Administer Cloud Manager
- Find your system ID
- Manage Connectors
- Manage credentials
- Manage your account
- Install an HTTPS certificate
- Remove working environments
- Configure proxy settings
- Reference
Automate with the API and IaC tools
- API Developer Guide
- Automate using IaC tools
Troubleshoot issues
Related links
Earlier versions
Legal notices

Gaining control of private data with Highlights

12/14/2020 Contributors Download PDF of this page

Highlights are like a Favorites list of custom filters that provide search results in the Investigation page for commonly requested compliance queries. Cloud Compliance provides a set of predefined Highlights based on common customer questions. In addition, you can create your own custom Highlights that provide results for searches specific to your organization.

The Highlights tab in the Compliance Dashboard lists all the Highlights available on this instance of Cloud Compliance.

A screenshot of the Highlights tab in the Cloud Compliance dashboard.

In addition, Highlights appear in the list of Filters in the Investigation page.

Creating custom highlights

You can create your own custom highlights that provide results for searches specific to your organization.

Steps

From the Data Investigation page, define your search by selecting all the filters you want to use. See Filtering data in the Data Investigation page for details.
Once you have all the filter characteristics just the way you want them, click Save this search as a Highlight.
Enter a unique name and description for the highlight and click Save Highlight.

The new highlight appears in the Highlights tab.

Viewing highlights results in the Investigation page

To display the results for a highlight in the Investigation page, click the More button button for a specific highlight, and then click Investigate Results.

A screenshot of selecting Investigate Results from the Highlights tab.

Editing highlights

You can modify any custom highlight that you created. You can’t modify any of the predefined highlights.

At this time, you can modify only the Name and Description for a custom highlight. If you need to change the filter parameters, you’ll need to create a new highlight with the parameters you want, and then delete the old highlight.

To modify a highlight, click the More button button for a specific highlight, click Edit Highlight, enter your changes on the Edit Highlight page, and click Save Highlight.

Deleting highlights

You can delete any custom highlight that you created if you no longer need it. You can’t delete any of the predefined highlights.

To delete a highlight, click the More button button for a specific highlight, click Delete Highlight, and then click Delete Highlight again in the confirmation dialog.

List of predefined highlights

Cloud Compliance provides the following system-defined highlights:

Name	Description	Logic
S3 publicly-exposed private data	S3 Objects containing personal or sensitive personal information, with open Public read access.	(S3 Public) AND contains personal OR sensitive personal info)
PCI DSS – Stale data over 30 days	Files containing Credit Card information, last modified over 30 days ago.	Contains credit card AND last modified over 30 days
HIPAA – Stale data over 30 days	Files containing Health information, last modified over 30 days ago.	Contains health data (defined same way as in HIPAA report) AND last modified over 30 days
Private data – Stale over 7 years	Files containing personal or sensitive personal information, last modified over 7 years ago.	Files containing personal or sensitive personal information, last modified over 7 years ago
GDPR – European citizens	Files containing more than 5 identifiers of an EU country’s citizens or DB Tables containing identifiers of an EU country’s citizens.	Files containing over 5 identifiers of an (one) EU citizens or DB Tables containing rows with over 15% of columns with one country’s EU identifiers. (any one of the national identifiers of the European countries. Does not include Brazil, California, USA SSN, Israel, South Africa)
CCPA – California residents	Files containing over 10 California Driver’s License identifiers or DB Tables with this identifier.	Files containing over 10 California Driver’s License identifiers OR DB Tables containing California Driver’s license
Data Subject names – High risk	Files with over 50 Data Subject names.	Files with over 50 Data Subject names
Email Addresses – High risk	Files with over 50 Email Addresses, or DB Columns with over 50% of their rows containing Email Addresses	Files with over 50 Email Addresses, or DB Columns with over 50% of their rows containing Email Addresses
Personal data – High risk	Files with over 20 Personal data identifiers, or DB Columns with over 50% of their rows containing Personal data identifiers.	Files with over 20 personal, or DB Columns with over 50% of their rows containing personal
Sensitive Personal data – High risk	Files with over 20 Sensitive Personal data identifiers, or DB Columns with over 50% of their rows containing Sensitive Personal data.	Files with over 20 sensitive personal, or DB Columns with over 50% of their rows containing sensitive personal

Name

Description

Logic

S3 publicly-exposed private data

S3 Objects containing personal or sensitive personal information, with open Public read access.

(S3 Public) AND contains personal OR sensitive personal info)

PCI DSS – Stale data over 30 days

Files containing Credit Card information, last modified over 30 days ago.

Contains credit card AND last modified over 30 days

HIPAA – Stale data over 30 days

Files containing Health information, last modified over 30 days ago.

Contains health data (defined same way as in HIPAA report) AND last modified over 30 days

Private data – Stale over 7 years

Files containing personal or sensitive personal information, last modified over 7 years ago.

Files containing personal or sensitive personal information, last modified over 7 years ago

GDPR – European citizens

Files containing more than 5 identifiers of an EU country’s citizens or DB Tables containing identifiers of an EU country’s citizens.

Files containing over 5 identifiers of an (one) EU citizens or DB Tables containing rows with over 15% of columns with one country’s EU identifiers. (any one of the national identifiers of the European countries. Does not include Brazil, California, USA SSN, Israel, South Africa)

CCPA – California residents

Files containing over 10 California Driver’s License identifiers or DB Tables with this identifier.

Files containing over 10 California Driver’s License identifiers OR DB Tables containing California Driver’s license

Data Subject names – High risk

Files with over 50 Data Subject names.

Files with over 50 Data Subject names

Email Addresses – High risk

Files with over 50 Email Addresses, or DB Columns with over 50% of their rows containing Email Addresses

Personal data – High risk

Files with over 20 Personal data identifiers, or DB Columns with over 50% of their rows containing Personal data identifiers.

Files with over 20 personal, or DB Columns with over 50% of their rows containing personal

Sensitive Personal data – High risk

Files with over 20 Sensitive Personal data identifiers, or DB Columns with over 50% of their rows containing Sensitive Personal data.

Files with over 20 sensitive personal, or DB Columns with over 50% of their rows containing sensitive personal