Skip to main content

 –

Step 8: Defining member PII data masking requirements

Suggest edit Updated on April 23, 2021

The Foundation provides pre-configured access roles and capability to mask a member’s personally identifiable information (PII) on a screen when accessed by unauthorized users. Employee and/or VIP flags available on the member’s profile are leveraged to mask the sensitive information on the screen.

The Foundation provides pre-configured access privilege rules that can be used in your UI design to obfuscate desired data fields on the screen. The following sample user logins are provided to visualize the member data masking in the sample claim and authorization data instances provided with the Foundation.

RulenameRule typeDescription
hcuserOperatorEnd user login with access to sample data portal WITHOUT privileges to view Employee or VIP member data (used to see Member Data Masking).
hcuservipOperatorEnd user login with access to sample data portal with privileges to view VIP member data and WITHOUT privileges to view Employee member data. (Used tosee Member Data Masking).
hcuserempOperatorEnd user login with access to sample data portal with privileges to view Employees member data and WITHOUT privileges to view VIP member data. (Used to see Member Data Masking).
PegaHC:View_VIP_PIIRoleAccess role with privilege to view VIP member data.
PegaHC:View_Employee_PIIRoleAccess role with privilege to view Employees member data.

Note: For ABAC implementation to work as expected in the implementation layer, you need to override the data transform “PegaHC-Data-AppExtension : AppExtension” in the implementation layer and update the VIP and EMP roles with the implementation layer specific access roles.

Did you find this content helpful? YesNo

Have a question? Get answers now.

Visit the Collaboration Center to ask questions, engage in discussions, share ideas, and help others.

Ready to crush complexity?

Experience the benefits of Pega Community when you log in.

We'd prefer it if you saw us at our best.

Pega.com is not optimized for Internet Explorer. For the optimal experience, please use:

Close Deprecation Notice
Contact us