Skip to content

Example Workflow Usage

Workflow Policy without Encryption#

Add the workflow policy#

Follow the steps above to add a workflow policy. In the policy, clear the Encrypt Data checkbox, if selected.

Add a resource#

  1. Select a datazone where you want to apply the workflow policy.

  2. Select the Resources tab.

  3. Click Add Resource button. You can add a folder or file as a resource. 

Note: Resource file should be CSV, Parquet, orc, JSON, avro format

  1. Click Save.

Now, when you run the scan on datazone, the policy will be applied and the data in the file will 

not be encrypted. 

Workflow Policy with Encryption#

Add the workflow policy#

Follow the steps above to add a workflow policy. In the policy, select the Encrypt Data checkbox, and select an Encryption Scheme to the tag you want to encrypt.

Add a resource#

  1. Select a datazone where you want to apply the workflow policy.

  2. Select the Resources tab.

  3. Click Add Resource button. You can add a folder or file as a resource. 

Note: Resource file should be CSV, Parquet, orc, JSON, avro format

  1. Click Save.

Now, when you run the scan on datazone, the policy will be applied and the data in the file will 

be encrypted, for those tags that were marked to be encrypted. 

Workflow Expunge#

Policy Visibility#

By default, the Workflow Expunge is not  visible in the dropdown of policies. To configure it, do the following in Discovery of Privacera Manager and Privacera Portal:

Privacera Manager

Run the following commands.


cd \~/privacera/privacera-manager\ cp config/sample-vars/vars.aws.discovery.yml config/custom-vars/\ vi config/custom-vars/vars.aws.discovery.yml


Add the following property.


DISCOVERY_WORKFLOW_EXPUNGE_POLICY_ENABLED=true


Run the update.


cd \~/privacera/privacera-manager\ ./privacera-manager.sh update


Privacera Portal

Go to System configuration on portal and add custom properties


privacera.portal.datazone.policy.workflow.expunge.enable=true


Add the workflow policy#

Follow the steps above to add a workflow policy. In the policy, select the Encrypt Data checkbox, and select an Encryption Scheme to the tag you want to encrypt.

Add a resource#

  1. Select a datazone where you want to apply the workflow policy.

  2. Select the Resources tab.

  3. Click Add Resource button. You can add a folder or file as a resource. 

Note: Resource file should be JSON format

  1. Click Save.

Now, when you run the scan on datazone, the policy will be applied and the data in the file will 

be encrypted, for those tags that were marked to be encrypted. 


Last update: July 23, 2021