Data storage

Data storage includes protecting the PII and SPI data that is stored in the database and on the file system.

The following list shows the different middleware and Financial Transaction Manager components that have security information that is related to the data storage security category.
Operations and Administration Console (OAC)
The configuration for roles and permissions is stored in the database.
Database
A database is used to store both configuration information and data that is being processed. To protect the data in the database, you might want to use Db2® native encryption.
File system
Financial Transaction Manager doesn't store information on the file system, but applications that you implement might.

Purging the data

You need to consider periodically purging data from the file system and the database. Configuring a method to regularly purge data helps you avoid retaining personally identifiable information (PII) or sensitive personal information (SPI) data for longer than is necessary. For more information, see Archive and purge.