Brand Restriction
This feature allows access to policies of specific brands to be restricted.
It is possible to apply an access restriction to a brand to indicate that the policy of the brand can only be accessed by users with a role that includes the restriction.
- Example
-
User Bob is granted access restriction VIP_BRAND. No access restrictions have been granted to user Pete. The following table shows for which brands they can access the policies.
Table 1. Example Brand Brand Access Restriction Policies for brand accessible by Bob? Policies for brand accessible by Pete? VIP Brand
VIP_BRAND
yes
no
Home Brand
empty
yes
yes
Some Brand
SOME_BRAND
no
no
empty
n.a.
yes
yes
- Inference Prevention
-
When a user searches for policies, policies of brands that they are not allowed to see will not be returned at all. This also applies when searching for one of the related entities.
- Related Entities
-
When access to a policy is restricted, the following details are restricted also:
-
Policyholder
-
Policy Billing Account
-
Policy Contract Period
-
Policy Collection Setting
-
Policy Calculation Period
-
Policy Premium Bill Allocation
-
Policy Bill Receiver
-
Policy Broker Agent
-
Policy Message
-
Policy Pend Reason
-
Calculation Result and related Calculation Result Lines
-
Policy Mutation
-
Member Enrollment
-
Member Enrollment Product
-
Member Add-on
-
Parameter Value
-
Attached Policy Data
-
Enrollment Event
-
Note
-
When searching with Generic API Top level and Sub-Resource Resource access restriction are applied. For details refer to HTTP API Data Access Restriction Concepts |