Data360 Govern

Is there a way to restrict read access for specific assets (not asset types)? 

We want to be able to configure a "Confidential?" field and if checked, only allow certain groups read access. 

For example: A general user can read all business terms, but would not see the term "Executive Compensation" because that term was marked as confidential. 

Hi Marisa,

This is possible through responsibility rules. Within the "when" section, the team will be required to specify a "condition" to achieve this end-result.

If I missed the mark on what the team is looking for, please elaborate and I am happy to review.

Matthew Kennedy

I want to restrict a handful of assets from all users (aside from those assigned to the asset).

The only way I know how to do this with responsibility rules is to work backwards. All users have access to read by default. Would I have to create a rule for all users to be able to read when confidentially flag = null or != yes? That feels difficult to manage.

We will have the same use case soon, the way I see this working is using a rule type hierarchy or rule priority which is not in the product right now as far as Im aware. 

The way you described the current responsibility rule functionality is correct.  You would need to create two separate responsibility rules.  One rule to provide general read access to assets when Confidential = No, and another rule to provide read access to assets when Confidential = Yes.

Since when filters currently only support the equals operator, your best option for the Confidential flag would be a List type, with Yes/No values, and with No set as the default value.  

Having a more streamlined way to manage this would be nice to have.