April 11, 2017 | Written by: Roger Welch
Categorized: Enterprise Content Management
Share this post:
While IBM ECM and IBM Datacap have always stressed the importance of both processing and security needs, we have been looking for ways to bring them together in better ways. One step towards that goal is to offer our existing redaction functionality in a role-based capacity.
The idea is that now you can adapt the automated business process to accurately remove Personally Identifiable Information (PII) and Protected Health Information (PHI) from documents depending on processing and security needs. Role-based redaction ensures that the information processing staff see only the information they need to see, while redacting content that is inappropriate for their role or level of security clearance. Thus, fewer copies of sensitive data are distributed throughout the organization and the responsibility of redaction is automated by the system, rather than the individual, reducing risk.
How It Works:
With the ability to define redaction for specific groups of people within the same task, the number of tasks to verify are decreased. The redaction, or multiple redactions, are based on the Roles (LDAP groups) of the individual logged in to handle the task. This allows for a staggering array of options at design time to meet any requirement for redaction.
Anyone with Personal Health Information concerns can redact all PHI from a document permanently, or only during verification. This would allow the business process owner and security professional to set criteria for local groups versus off-shore groups. The information can be redacted for off-shore roles that need to process non-medical information such as billing. Conversely, the redaction can be removed for local roles that need to process the medical information across the entire document. Third or even fourth parties could have different redaction needs on the same document. Within the same ‘Verify’ step or across numerous steps, based solely on the login of the user processing the document, the system will know how and where to apply the redactions, defined by the Datacap expert, to multiple document types.
How to Get Started:
Download this infographic to see why safeguarding sensitive data and the privacy of customers, citizens and patients are critical.