Data Governance: 10% Flashcards
What is GDPR?
- General Data Protection Regulation = European data protection law that regulates use of personal data
- Organizations need to take measures to minimize amount of personal information stored and not keep information longer than necessary
What is a “Data Processor” as it relates to GDPR?
Processes data on behalf of the data controller (Salesforce in this case)
What is a “Data Controller” as it relates to GDPR?
A Salesforce customer that is responsible for managing the customer data
What is a “Data Subject” as it relates to GDPR?
An individual(person) that data is collected and related to a Salesforce record
What are the six key principles of GDPR?
- Legitimate Purpose
- Data Deletion
- Secure
- Consent
- Accurate
- Accountable
What is the “Individual” object in Salesforce?
Represents a customer’s data privacy and protection preferences. Data privacy records based on the Individual object store your customers’ preferences. Data privacy records are associated with related leads, contacts, person accounts, and users.
What is considered “Personal Data” ?
Data used to identify an individual person (ex. location or IP address)
What is considered “Sensitive Data”?
Subcategory of personal data that encompasses race, ethnic origin, religious and political views
What is Salesforce Data Mask?
Used to automatically mask sensitive data in a sandbox such as PII(Personally Identifiable Information) or Sales revenue
What is Shield Platform Encryption?
Personal and sensitive information can be protected using Shield Platform Encryption
What is Einstein Data Detect?
AI used to find and categorize sensitive data in an org
What is Salesforce Privacy Center?
Used for managing how a Salesforce org retains, deletes, anonymizes and sends copies of customer data
What permission is required when exporting encrypted data?
View Encrypted Data
What setting can be enabled to hide personal information fields in user records from external users?
Enhanced Personal Information
What is the difference between Data Governance and Data Stewardship?
- Governance = establishes rules and policies to ensure reliable and effective customer data
- Stewardship = puts tactical roles and activities into effect to ensure adherence and support of the data governance plan
What are the steps in developing a Data Governance Framework?
- Data definitions
- Quality Standards
- Roles and Ownership
- Security and permissions
- Quality control
What are some auto merge (duplication) tools offered from the App exchange?
- Cloudingo
- Duplicate Manager
- Note: Up to three records can be merged
What is the “Decentralized/Bottom Up” data governance model?
Decentralized execution of rules, standards, policies and procedures. Each user is responsible for data quality maintenance while following their own processes
What is the “Decentralized/Bottom-up (Cross Functional)” data governance model?
Data is shared with other business units is the only difference from the standard “Decentralized” Model
What is the “Centralized/Top-down” data governance model?
Focuses on the creation of rules, standards,policies, and procedures by a central data governance body, which is also responsible for data quality maintenance.
What is the “Hybrid” data governance model?
Create rules, standards, and policies by a central data governance body, and execute them by individual business users based on their own processes.