Protect sensitive data in PPM, such as user names, passwords, and e-mail addresses. Use the process below to help during your security planning:
- Identify which PPM modules you will use.
- Determine which modules and interacting applications display or transmit data that your organization considers sensitive.
- Implement security measures in PPM to carefully grant users access to sensitive data. For example, secure data, objects, and components in such a way as to limit access to those users who need that access.
- Implement security measures for applications that interact with PPM, as detailed in the documentation included with those applications. For example, follow the security guidance provided with IIS. Also refer, as applicable, to the document For more information, refer to Primavera Portfolio Management Enabling SSL in the Oracle Primavera Portfolio Management System Administration Guide.
- Implement consent notices in Primavera Portfolio Management to gather the consent of users to store, use, process, and transmit personally identifiable information (PII) and to alert users when there is a risk of PII being exposed.