Gaining control of private data with Highlights

Contributors netapp-tonacki Download PDF of this page

Highlights are like a Favorites list of custom filters that provide search results in the Investigation page for commonly requested compliance queries. Cloud Compliance provides a set of predefined Highlights based on common customer questions. In addition, you can create your own custom Highlights that provide results for searches specific to your organization.

The Highlights tab in the Compliance Dashboard lists all the Highlights available on this instance of Cloud Compliance.

A screenshot of the Highlights tab in the Cloud Compliance dashboard.

In addition, Highlights appear in the list of Filters in the Investigation page.

Creating custom highlights

You can create your own custom highlights that provide results for searches specific to your organization.

Steps
  1. From the Data Investigation page, define your search by selecting all the filters you want to use. See Filtering data in the Data Investigation page for details.

  2. Once you have all the filter characteristics just the way you want them, click Save this search as a Highlight.

    A screenshot showing how to save a filtered query as a Highlight.

  3. Enter a unique name and description for the highlight and click Save Highlight.

    A screenshot that shows how to name the highlight and save it.

The new highlight appears in the Highlights tab.

Viewing highlights results in the Investigation page

To display the results for a highlight in the Investigation page, click the More button button for a specific highlight, and then click Investigate Results.

A screenshot of selecting Investigate Results from the Highlights tab.

Editing highlights

You can modify any custom highlight that you created. You can’t modify any of the predefined highlights.

At this time, you can modify only the Name and Description for a custom highlight. If you need to change the filter parameters, you’ll need to create a new highlight with the parameters you want, and then delete the old highlight.

To modify a highlight, click the More button button for a specific highlight, click Edit Highlight, enter your changes on the Edit Highlight page, and click Save Highlight.

Deleting highlights

You can delete any custom highlight that you created if you no longer need it. You can’t delete any of the predefined highlights.

To delete a highlight, click the More button button for a specific highlight, click Delete Highlight, and then click Delete Highlight again in the confirmation dialog.

List of predefined highlights

Cloud Compliance provides the following system-defined highlights:

Name Description Logic

S3 publicly-exposed private data

S3 Objects containing personal or sensitive personal information, with open Public read access.

(S3 Public) AND contains personal OR sensitive personal info)

PCI DSS – Stale data over 30 days

Files containing Credit Card information, last modified over 30 days ago.

Contains credit card AND last modified over 30 days

HIPAA – Stale data over 30 days

Files containing Health information, last modified over 30 days ago.

Contains health data (defined same way as in HIPAA report) AND last modified over 30 days

Private data – Stale over 7 years

Files containing personal or sensitive personal information, last modified over 7 years ago.

Files containing personal or sensitive personal information, last modified over 7 years ago

GDPR – European citizens

Files containing more than 5 identifiers of an EU country’s citizens or DB Tables containing identifiers of an EU country’s citizens.

Files containing over 5 identifiers of an (one) EU citizens or DB Tables containing rows with over 15% of columns with one country’s EU identifiers. (any one of the national identifiers of the European countries. Does not include Brazil, California, USA SSN, Israel, South Africa)

CCPA – California residents

Files containing over 10 California Driver’s License identifiers or DB Tables with this identifier.

Files containing over 10 California Driver’s License identifiers OR DB Tables containing California Driver’s license

Data Subject names – High risk

Files with over 50 Data Subject names.

Files with over 50 Data Subject names

Email Addresses – High risk

Files with over 50 Email Addresses, or DB Columns with over 50% of their rows containing Email Addresses

Files with over 50 Email Addresses, or DB Columns with over 50% of their rows containing Email Addresses

Personal data – High risk

Files with over 20 Personal data identifiers, or DB Columns with over 50% of their rows containing Personal data identifiers.

Files with over 20 personal, or DB Columns with over 50% of their rows containing personal

Sensitive Personal data – High risk

Files with over 20 Sensitive Personal data identifiers, or DB Columns with over 50% of their rows containing Sensitive Personal data.

Files with over 20 sensitive personal, or DB Columns with over 50% of their rows containing sensitive personal