Glossary

Data Source

A Data Source is a resource, application or database, containing the repository of data which is scanned for sensitive information.

Attribute

An attribute is a sensitive data element which LightBeam scans for in data sources. For ex. Credit Card Number, SSN, Name, Address, Age, Bank Account Number, Medical Record Number, etc.

Attribute Set

A meaningful collection of attributes. For ex. “Identity” is an attribute set that contains identity attributes such as First Name, Last Name, Address, US Driver License and so on. You can create your own Attribute Sets with a combination of different attributes.

Entity

An identity, to who data belongs (such as Employee, Customer, Organization) inferred by LightBeam based on the data and the context in which it is present

Objects

A distinct unit which is scanned. For ex. a file, an email, a Slack message, a MySQL table.

Doc Classification and Sub-classification

A category which is attributed to a document based on its layout/content. For ex. A “US W2 Tax form” would be classified as a “Financial” document and further sub-classified as a “Tax Form”

Templates

A template is a custom Classification which you can create by uploading a sample file. LightBeam will use this template to identify similar files and classify them appropriately.

Labels

Can be custom or 3rd party such as Microsoft Purview or Google Labels. You can set up a labeling policy to apply labels as per the content of your documents.

Policies

Set of rules that help you identify objects / raise alerts / take actions based on a combination of criteria. For example, a Detection policy can be created to raise an alert if a credit card number belonging to a customer is detected in a Sharepoint data source.

Alerts

An alert is triggered if configured to be raised when a policy condition is met. Alerts are notified via the main dashboard as well as datasource level views and specific details of which objects are impacted can be accessed on the Alerts UI. You can also choose to notify specific users if an alert is triggered.

Risky / At Risk

Objects and data sources are marked as risky or at risk if alerts are raised on them via any policies

Merged Entities

LightBeam collects different data points across all data sources to create a consolidated view for each entity, the resultant entity/entities are referred to as Merged Entities

Erased Entities

Entities whose data you have removed from data sources are maintained in an Erased Entities list so that if data of these entities reappears, LightBeam is able to detect the data and notify you of the same.

Executive Report

A PDF report that summarizes the current state of data discovery and protection on LightBeam. The report gives you a high level view of the volume and depth of data discovery coverage, what type of sensitive data and whose sensitive data is present where, how it has changed over time and, the data protection policies configured and those at risk. You can download this report from the LightBeam UI and configure a setting to have it emailed to you on a chose periodic basis.

Delta Report

A PDF report that gives a detailed overview of your data landscape, focusing on sensitive data discovery and trends over a four-week period. It provides assessments of both structured and unstructured data sources, and gives a granular view into the changes in the coverage of data, and the type and volume of sensitive data for each data source.

DSR

A module that enables you to automate the management of Data Subject Requests end-to-end, from accepting requests, detecting the data across all your data sources, to tracking and logging the details and taking automated actions such as erasing data, generating reports and sending out emails to data subjects.

Consent

A module that enables you to automate Consent Management. You can create different preference centers, accept and track consent across categories and automatically update downstream applications to ensure consent is honored.

Cookie Consent

A module that enables you to operationalize cookie compliance for CCPA, GDPR, LGPD and many more. You can configure branded banners, integrate them with your website and track consent of your website visitors

PIA

The PIA module provides tools to automate Privacy Impact Assessment. It comes with the capability to create detailed assessments from new or pre-defined questionnaire templates, associate risk levels based on responses, collaborate with different team members on the assessments, add review comments, determine the risk level and generate PDF reports.

RoPA

RoPA stands for Record of Processing Activity. The RoPA module helps you generate RoPA reports at any point in time at any level - company, process groups, individual processes. RoPA report generation is automated with near-real time visibility into all data present in your data repositories, their purpose, and active data maps.

Access

The Access Governance module empowers you to manage data visibility and access control by pinpointing issues such as open access, excessive access, questionable access and cross-department access. You can view which employees and groups have access to what data and whose data across all data sources and apply appropriate controls.

Privacy@Partners

The Privacy@Partners module gives you a rich view of all data being shared externally, outside your organization. LightBeam automatically detects external entities and creates a view of the exact attributes or data elements, entities and files which are shared to each external entity or partner.

Playbooks

The Playbooks module enables you to create and edit policies, monitor and manage alerts and notifications. LightBeam supports a rich set of policies including Access policies to monitor data sharing internally and externally, Detection policies to monitor detection of sensitive data, Retention policies to manage data based on the age of the file or time since it was accessed, and Governance policies to monitor and manage files being shared openly, excessively or across departments.