Abstract: An apparatus comprises a network interface and a processor communicatively coupled to the network interface. The network interface communicates with a database comprising a plurality of columns and a plurality of views. Each view is associated with at least one column of the plurality of columns. The processor receives a request to determine one or more noncompliant views of the database. For each view and each column associated with the view, the processor determines whether the column is associated with a privacy indicator that indicates that the column should be masked and whether the view masks the column. The processor then determines that the view is noncompliant if the view does not mask at least one column that should be masked, and generates a report that indicates whether each view of the database is noncompliant. The network interface communicates the report.

Abstract: Data may be retrieved from databases using various types of code, functions and programs. To insure that the code, functions and programs comply with privacy requirements and regulations, the code and programs may be audited. In one example, an activity log may be queried to identify code that was executed to retrieve and display database information. A system may then determine whether an unauthorized entity was able to retrieve and/or view the database information. If so, the code or program may be labeled as non-compliant. Alternatively or additionally, a system may parse data retrieval code to determine whether privacy protection code is included therein. If not, the code may be deemed non-compliant. Reports may be generated identifying the non-compliant data retrieval code or function and, in some arrangements, specifying compliance statistics.

Abstract: An apparatus comprises a network interface and a processor communicatively coupled to the network interface. The network interface communicates with a database comprising a plurality of columns and a plurality of views. Each view is associated with at least one column of the plurality of columns. The processor receives a request to determine one or more noncompliant views of the database. For each view and each column associated with the view, the processor determines whether the column is associated with a privacy indicator that indicates that the column should be masked and whether the view masks the column. The processor then determines that the view is noncompliant if the view does not mask at least one column that should be masked, and generates a report that indicates whether each view of the database is noncompliant. The network interface communicates the report.

Abstract: According to one embodiment, an apparatus comprises a network interface and a processor communicatively coupled to the network interface. The network interface communicates with a database comprising a plurality of columns and a plurality of views. Each view is associated with at least one column of the plurality of columns. The processor receives a request to determine one or more noncompliant views of the database. For each view and each column associated with the view, the processor determines whether the column is associated with a privacy indicator that indicates that the column should be masked and whether the view masks the column. The processor then determines that the view is noncompliant if the view does not mask at least one column that should be masked, and generates a report that indicates whether each view of the database is noncompliant. The network interface communicates the report.

Abstract: According to one embodiment, an apparatus comprises a network interface and a processor communicatively coupled to the network interface. The network interface communicates with a database comprising a plurality of columns and a plurality of views. Each view is associated with at least one column of the plurality of columns. The processor receives a request to determine one or more noncompliant views of the database. For each view and each column associated with the view, the processor determines whether the column is associated with a privacy indicator that indicates that the column should be masked and whether the view masks the column. The processor then determines that the view is noncompliant if the view does not mask at least one column that should be masked, and generates a report that indicates whether each view of the database is noncompliant. The network interface communicates the report.

Abstract: Data may be retrieved from databases using various types of code, functions and programs. To insure that the code, functions and programs comply with privacy requirements and regulations, the code and programs may be audited. In one example, an activity log may be queried to identify code that was executed to retrieve and display database information. A system may then determine whether an unauthorized entity was able to retrieve and/or view the database information. If so, the code or program may be labeled as non-compliant. Alternatively or additionally, a system may parse data retrieval code to determine whether privacy protection code is included therein. If not, the code may be deemed non-compliant. Reports may be generated identifying the non-compliant data retrieval code or function and, in some arrangements, specifying compliance statistics.