Covata Data Discovery
Comply with state and federal privacy regulations
This customer is a large university system (a group of affiliated universities or colleges) in the United States. As it has grown, so has the amount of data it stores. To comply with state and federal privacy regulations, it needed to pinpoint and secure sensitive, personally identifiable information (PII) for students, faculty and other individuals. To do this, it required a data security and privacy compliance platform that would allow it to locate, secure and monitor PII across all its university campuses.
Iterative discovery, data encryption and permissions governance
Covata worked with the customer to define accurate data discovery rules. This process took less than an hour, after which we uncovered approximately 29,000 social security numbers and 100 credit card numbers in the first 1,000 files we crawled. As the customer located PII, it also encrypted it and fixed any permissions that violated enterprise policy for accessing PII.
Reduced risk for the organisation and the students
The customer knew it had unsecured PII, and it was determined to be proactive about preventing a data breach. Centralised data discovery allowed it to identify and locate PII used by staff and faculty at all of its campuses. Once categorised, files containing PII could be encrypted to comply with privacy protection laws, and permissions could be properly governed. The result was a cost-effective solution to reduce the risk of unauthorised exposure of PII.