Immuta announced an industry first: No-code, automated governance features that enable business analysts and data scientists to securely share and collaborate with data, dashboards, and scripts without fear of violating data policy and industry regulations.
The Immuta platform ensures compliance with all major data regulations – including the General Data Protection Regulation (GDPR), The California Consumer Privacy Act (CCPA), and the Health Insurance Portability and Accountability Act (HIPAA).
According to Gartner’s Risk Management Leadership Council’s April 2019 Emerging Risks Monitor Report, “Accelerating Privacy Regulation” is the number one concern among risk, audit, and compliance executives. As defined by Gartner, “Accelerating Privacy Regulation” is “the risk of progressively complicated statutory regimes, which cover the use and protection of customer data, creating the potential for legal and financial exposure,” e.g. GDPR, CCPA, and HIPAA.
The Immuta Automated Data Governance Platform creates trust across security, legal, compliance and business teams so they can work together to ensure timely access to critical business data with minimal risks. Its automated, scalable, no code approach makes it easy for users across an organization to access the data they need on demand, while protecting privacy and enforcing regulatory policies on all data.
Automated Policy Inheritance
Historically, data policies have been managed at the application or system level. When analysts attempt to integrate data across many disparate systems, it can be difficult, if not impossible, to re-write these rules into a new, combined policy. This process is slow, complex, error-prone, and requires months of calls, emails, and meetings.
Immuta’s new Automated Policy Inheritance feature eliminates the need for human intervention to manage policies across mashed up data sources. Analysts can instantaneously and securely create integrated data sources, share derived data from them and collaborate across the organization – with confidence that the proper controls are in place.
Re-identification requests: On-demand de-masking of sensitive data
Gaining authorization for viewing regulated data – especially when it’s a single piece of data such as a name, email or phone number – can be confusing and cumbersome. Most organizations still use slow, poorly documented processes for sensitive data requests. This creates significant barriers for time sensitive, ‘need to know’ data access requests.
For example, imagine a situation where a researcher uncovers a medical misdiagnosis in a set of healthcare data. Knowing how to request and re-identify that person and their contact information, in a timely manner, without breaking the privacy of others, could save that person’s life while maintaining the highest of ethical standards.
To remove the complexity and confusion involved with consent, Immuta has introduced Format Preserving Encryption and Reversible Masking features so that users can immediately place a digital request for the data that they need to be “de-masked,” eliminating chaos and confusion.
Digital requests are instantaneously presented for authorization so that decisions on sensitive data access can be done quickly and securely – allowing an immediate, one-time re-identification for the requested data, or elevating the request for additional scrutiny.
Fingerprints: Capture the impact of data policy changes on downstream data users
When a data owner needs to make access and control policy changes to a data source, there has never been a way to demonstrate the impact those changes could have on the downstream use of that data. For example, statistical changes to data used within analytics or dashboards could have a major impact on the accuracy of a model or the integrity of business intelligence dashboards.
The new Immuta Fingerprints feature eliminates any uncertainty about how downstream use could be impacted. It calculates the impact of data policy changes and provides visualizations to users of the statistical deviation. Together, with the Immuta Policy Inheritance feature, downstream users are notified about any changes and are provided details on how their use of the impacted data will affect them.
Immuta also announced that its platform is now interoperable with the Databricks Spark analytics engine, and cloud-based data warehouses Google Big Query and Snowflake.
Steve Touw, Co-founder and Chief Technology Officer, Immuta said: “Immuta has delivered another industry first: workflow features that allow users to confidently and securely collaborate with sensitive data across their organization because they know, through the Immuta platform, that the rules will be enforced. They also have the freedom to make changes on the fly without any concern that privacy policies will be infringed upon. Also, if a policy needs to be changed, we’ve made it easy for the user to go through the workflow and adapt as needed.”