21Security and Personally Identifiable Information

This chapter contains the following:

Overview

Securing and protecting confidential customer information against data breaches, data theft, or unauthorized access is an increasing concern for enterprises. To address this issue, Oracle restricts access to certain information, known as Personally Identifiable Information (PII), that's considered private to an individual. Read this chapter to learn how personally identifiable information is secured in Oracle Applications Cloud.

For additional information about managing PII data, or about configuring access to PII data, see the guide Implementing Customer Data Management for CX Sales and B2B Service at http://docs.oracle.com.

How to Protect Personally Identifiable Information

The data or information that's used to uniquely identify a contact, or locate a person is called personally identifiable information (PII), such as social security number, addresses, bank account numbers, phone numbers, and so on. This information is considered confidential and sensitive, and must be protected to prevent unauthorized use of personal information for the purposes of legal regulation, financial liability, and personal reputation. For example, only authorized users must be allowed access to the social security numbers of people stored in a system.

In Oracle Applications Cloud, the PII data is secured and can be accessed only by the following job roles with the exception of mobile phone data:

  • Sales Administrator

  • Enterprise Scheduler Job Application Identity for CRM

  • Oracle Data Integrator Application Identity for CRM

  • Web Services Application Identity for CRM

Mobile phone data is accessible to all seeded job roles. However, if access to mobile phone data is needed for custom job roles, the IT Security Manager must assign the required PII data policies to the custom job role in the Security Console. The IT Security Manager can also add data policies for other PII data to seeded job roles.

The following table lists the PII attributes that are secured in Oracle Applications Cloud.

PII Attribute Table Name Privilege Title Privilege Name

Taxpayer Identification Number (Social Security Number)

HZ_PERSON_PROFILES

View Trading Community Person Social Security

HZ_VIEW_TRADING_COMMUNITY_PERSON_SOCIAL_SECURITY_DATA

Taxpayer Identification Number (Social Security Number)

HZ_PERSON_PROFILES

Manage Trading Community Person Social Security

HZ_MANAGE_TRADING_COMMUNITY_PERSON_SOCIAL_SECURITY_DATA

Citizenship Number

HZ_CITIZENSHIP

View Trading Community Person Citizenship Number

HZ_VIEW_TRADING_COMMUNITY_PERSON_CITIZENSHIP_NUMBER_DATA

Citizenship Number

HZ_CITIZENSHIP

Manage Trading Community Person Citizenship Number

HZ_MANAGE_TRADING_COMMUNITY_PERSON_CITIZENSHIP_NUMBER_DATA

Home Address

HOME Address is identified by party site use defined in SITE_USE_TYPE field of the HZ_PARTY_SITE_USES table

View Trading Community Person Address

HZ_VIEW_TRADING_COMMUNITY_PERSON_ADDRESS_DATA

Home Address

HOME Address is identified by party site use defined in SITE_USE_TYPE field of the HZ_PARTY_SITE_USES table

Manage Trading Community Person Address

HZ_MANAGE_TRADING_COMMUNITY_PERSON_ADDRESS_DATA

Home Phone

HZ_CONTACT_POINTS rows with contact_point_purpose value PERSONAL

View Trading Community Person Contact

HZ_VIEW_TRADING_COMMUNITY_PERSON_CONTACT_DATA

Home Phone

HZ_CONTACT_POINTS rows with contact_point_purpose value PERSONAL

Manage Trading Community Person Contact

HZ_MANAGE_TRADING_COMMUNITY_PERSON_CONTACT_DATA

Mobile Phone

HZ_CONTACT_POINTS rows with phone_type or phone_line_type value MOBILE

View Trading Community Person Mobile Phone Number

HZ_VIEW_TRADING_COMMUNITY_PERSON_MOBILE_PHONE_DATA

Mobile Phone

HZ_CONTACT_POINTS rows with phone_type or phone_line_type value MOBILE

Manage Trading Community Person Mobile Phone Number

HZ_MANAGE_TRADING_COMMUNITY_PERSON_MOBILE_PHONE_DATA

Home Email

HZ_CONTACT_POINTS rows with contact_point_purpose value PERSONAL

View Trading Community Person Contact

HZ_VIEW_TRADING_COMMUNITY_PERSON_CONTACT_DATA

Home Email

HZ_CONTACT_POINTS rows with contact_point_purpose value PERSONAL

Manage Trading Community Person Contact

HZ_MANAGE_TRADING_COMMUNITY_PERSON_CONTACT_DATA

Additional Identifiers

All rows that belong to PERSON party in HZ_ADDTNL_PARTY_IDS

View Trading Community Person Additional Identifier

HZ_VIEW_TRADING_COMMUNITY_PERSON_ADDITIONAL_IDENTIFIER_DATA

Additional Identifiers

All rows that belong to PERSON party in HZ_ADDTNL_PARTY_IDS

Manage Trading Community Person Additional Identifier

HZ_MANAGE_TRADING_COMMUNITY_PERSON_ADDITIONAL_IDENTIFIER_DATA