A company needs to allow some users to see Personally Identifiable Information (PII) while limiting other users from seeing the full value of the PII.
Which Snowflake feature will support this?
A company needs to allow some users to see Personally Identifiable Information (PII) while limiting other users from seeing the full value of the PII.
Which Snowflake feature will support this?
To allow certain users to view Personally Identifiable Information (PII) while restricting others from seeing the full value, Data Masking Policies are the appropriate feature in Snowflake. Data masking enables conditional display of data based on user roles and permissions, showing masked or obfuscated values to unauthorized users and full values to authorized users. This controlled exposure of PII ensures compliance with privacy regulations and secures sensitive information.
If you have a table with a column including PII, masking rows will not solve the issue. What we need is to make the data in this column visible to some, and masked to some. Thus we need to use dynamic data masking.
Row access policy limits the access to the row itself while Masking policy will allow to see the data value but not the actual value.
https://community.snowflake.com/s/article/Methods-for-Securing-PII-Data-in-Snowflake I think both first and second options are correct
Row acess policies can have specific roles included in the definition. The correct option is A.
https://community.snowflake.com/s/article/How-to-Secure-PII-Data-with-Data-Masking
The correct answer is B, Dynamic Data Masking
B is correct
B. Data masking policies
Data Masking Policies