I as a data manager would like the Portal to tell me, for each data type, what are the fields that contain sensitive info and are currently being protected by the system either through anonymisation or encryption.
Outcome
The data manager gets to know what data is currently protected and how.
How will it work?
We're going to implement the UI part to fulfill this user story and make the UI drive the definition of a backend REST API which will actually provide data protection status. The UI will display the following info for each data type (JSON object type)
Top-level field names.
For each field name whether or not the system protects its content. In the case the system protects the field data, we need to tell the user by which means, either encryption or anonymisation.
For each field name that's protected we need to tell the user whether the field data is protected at rest, in transit or both.
Summary
I as a data manager would like the Portal to tell me, for each data type, what are the fields that contain sensitive info and are currently being protected by the system either through anonymisation or encryption.
Outcome
The data manager gets to know what data is currently protected and how.
How will it work?
We're going to implement the UI part to fulfill this user story and make the UI drive the definition of a backend REST API which will actually provide data protection status. The UI will display the following info for each data type (JSON object type)