Skip to main content

User Guide


A policy is a set of rules that serves a specific data provisioning use case. A policy is a flexible construct that allows you to apply rules in the way that best meets your use cases. For example, you can write a policy around a specific regulation (such as HIPAA or GDPR) or around a specific business use case (such as provisioning data for marketing analytics).

The platform offers two types of policies—access control policies and transformation policies.

As a data guardian, you use access control policies to control access to assets, and you use transformation policies to define a set of transformations to apply to those assets to de-identify them for a given use case. You can reuse policies across different environments or for multiple data releases to ensure consistent treatment for the same asset.