Data classification and categorization lets you divide data into sensitivity levels and types based on its value, content sensitivity, impact, and scope of distribution. Governance principles and data development requirements differ for data at different sensitivity levels. After your data is classified and categorized, you can use these definitions to manage sensitive data of different degrees. This topic describes how to configure data classification and categorization.
Go to the data classification and categorization page
Go to the DataStudio page.
Log on to the DataWorks console. In the top navigation bar, select the desired region. In the left-side navigation pane, choose . On the page that appears, select the desired workspace from the drop-down list and click Go to Data Development.
Click the
icon in the upper-left corner. Then, choose . On the page that appears, click Try Now to go to the Data Security Guard page. NoteIf your Alibaba Cloud account is granted the required permissions, you can directly access the homepage of Data Security Guard.
If your Alibaba Cloud account is not granted the required permissions, you are redirected to the authorization page of Data Security Guard. You can use the features of Data Security Guard only after your Alibaba Cloud account is granted the required permissions.
In the navigation pane on the left, choose to open the configuration page.
Configure data classification and categorization
Data Security Guard provides a built-in classification and categorization template. This template includes four sensitivity levels and four major categories that you can use immediately.
Level: Defines the sensitivity of data. A higher value indicates a greater degree of sensitivity.
Category: Includes multiple sensitive field types and defines their corresponding sensitivity levels. You can use these sensitive field types to detect sensitive data and determine its sensitivity level.
If the built-in classification and categorization template does not meet your business needs, you can create custom ones. DataWorks lets you edit the classifications and categorizations in the built-in template or create new ones. You can define up to 10 levels. For categories, you can define multilayer categories, subcategories, and the sensitive field types that they contain.
To delete an unused category or level, you must first delete all sensitive field types associated with it. For more information, see Manage sensitive field types.
Click the Edit button. The settings are displayed, as shown in the following figure. You can configure up to 10 levels. To delete a level, you must first delete all sensitive field types that it contains or reassign them to another level.
Click the View button. You are redirected to the page. On this page, you can edit, delete, or modify the categories in the rule template. You can configure up to four layers of categories using the add subcategory option.
What to do next
After you configure data classification and categorization, go to the Sensitive Data Identification page to define sensitive field types and configure sensitive data detection rules. Assign sensitive field types to the appropriate categories and levels based on factors such as data usage and source. This helps you detect different types and degrees of sensitive data. For more information, see Configure data detection rules.