Sensitive data such as SSN in medical journals, payment information in audit reports, or confidential email information are types of data that should very rarely be processed by anyone, regardless of role – including even auditors.
Any field that can be used to identify a natural person can be obfuscated in a way where no LogPoint user can view the original data. The user can still run queries, view dashboards and reports but the encrypted field-values will be shown and not the actual data.
To gain access to an encrypted field, the Data Privacy Mode employs a variant of the ‘four-eyes’ principle – a second pair of eyes to authorize a decision. The user looking to view the original data for an obfuscated field will need to request permission from an admin, or ‘granting user’, who will then process the request.
Access to the data field is further restricted to a predefined period of time. The process of decrypting the field and exposing this to a user is fully documented within the product, detailing which user has requested access to which field, who granted access and how long the data has been accessible to the user.