Best practices for data controllers

Self-hosted customers are responsible for deleting or anonymizing any customizations, including identifiable information in core or custom tables. The data controller should also be aware of identifiable information in custom forms created in the Form Builder feature.

Note:  If you are a cloud customer, you must open a ticket with Support to begin this process.

As a best practice, the data controller should also keep these points in mind when using the application:

  • EMP_NAME should not contain any identifiable information.
  • WBU_NAME should not contain any identifiable information.
  • Log files and backups should be cleaned up in a timely manner as they could contain personal information and IP addresses.