Data classification
Classification is the action of adding classification tags and classification tag categories to certain data object types to help an organization comply with data security regulations, such as the EU GDPR, and to show accountability in relation to the EU GDPR regulations.
- A classification tag category is a group of classification tags that defines the 'theme' of the classification tags, for example "EU GDPR" or "Risk".
- A classification tag is part of a classification tag category and serves as an individual grouping within the overall classification tag category, for example Personal data, Personal sensitive data or High/Low risk data.
You can add classification tags and classification tag categories (a group of classification tags) to certain data object types to help your organization comply with data security regulations, such as the EU GDPR, and to show accountability in relation to the EU GDPR regulations.
You can add classification tag categories and classification tags for the following data object types:
- Systems
- Org. units
- Resources
- Resource Folders
- Identities
When you add classification categories and tags for these types of data object types, you provide your organization with the ability to establish a risk management strategy, including relevant risk controls.
Classification tags and tag categories
To get started with adding classifications to your organization’s data, you must either create its own classification tags and classification categories to Omada Identity or use the predefined classification tags and classification tag categories that are included in a standard installation of the Omada Identity software.
The standard classification tag categories and classification tags are:
EU General Data Protection Regulation (GDPR)
It allows you to add the following categorization tags to object types:
- Personal data
- Personal sensitive data
- High risk data
- Medium risk data
- Low risk data
Resource classification
A classification tag category dedicated for resources. It allows you to add the following categorization tags to resources:
- Business critical
- System administration
- Privileged access
Criticality
A risk-related classification tag category defined per system, based on vulnerability analysis. It allows you to add the following categorization tags to object types:
- Non-critical
- Critical
Data Classification
A risk-related classification tag category that defines the confidentiality level for the resource. It allows you to add the following categorization tags to object types:
- External
- Internal
- Confidential
- Sensitive
- Secret
Privileges
A risk-related classification tag category that defines the access security for the resource. It allows you to add the following categorization tags to object types:
- Read
- Write
- Approve/Assign
- Administrator
If you cannot use the default available classification tag categories and classification tags for your organization’s purposes, you can either edit the existing tag categories and tags or create your own categories and tags.
The type of classification that you need in your organization may be different depending on the type of business or national context in which your organization operates. In other words, what you must comply with in one country or type of organization may not be the same in a different country or type of organization.