Configure data classification
Primary characteristics of data classification:
- Facilitates storage optimization, identifies risks associated with data, and helps compliance
- Applies equally regardless of:
- Data state: at rest, in process, and in transit
- Data format: structured and unstructured
Implementing data classification in Azure SQL Database:
- Available as part of Advanced Data Security offering
- Data discovery and classification (in preview as of March 2019)
- Configurable via the Azure portal
- Provides a set of capabilities forming SQL Information Protection:
- Discovery and recommendations
- Labeling
- Query result set sensitivity
- Visibility
Configure data retention
- Primary characteristics of data retention:
- Dictates data recovery and disposal rules
- Relates closely to data classification
- Addresses regulatory, compliance, and corporate legal requirements
- Implementing data retention for Azure Blob storage:
- Relies on immutable storage: write once, read many (WORM)
- Offers support for:
- Time-based retention policies
- Legal-hold policies
- All blob tiers: hot, cool, and archive
- Container-level configuration
- Audit logging
Configure data sovereignty
- Primary characteristics of data sovereignty:
- Facilitates compliance with laws of the country (or region) where data is located
- Prevents storing data in a foreign country
- Typically includes provisions for data durability and resiliency
- Implementing data sovereignty based on Azure regions:
- Relies on paired regions: each region paired with another within the same geography (*)
- Offers a range of benefits:
- Physical isolation
- Platform-provided replication
- Region recovery order
- Sequential updates
- Data residency
- Reflects Microsoft commitment to compliance
Top comments (0)