From 13627670ce3391df15003473ccf19d4c35862614 Mon Sep 17 00:00:00 2001 From: Thomas Date: Wed, 31 May 2023 23:21:56 +0800 Subject: [PATCH] Update Data Uses for 1.4 (#107) * Update Data uses for 1.4 * feat: refactor how the default taxonomy is set up to make modification easier * Update Data Uses * feat: add a suite of "count" tests for the default taxonomy * feat: set proper Defaults for Optional fields * feat: rework top-level and second-level uses * feat: advertising restructure * fix: pytest * feat: add a new export script for the default taxonomy that includes YAML, JSON and CSV * feat: fix the CSV export and add a simple sorting to the default data types * feat: add a CI check for the taxonomy export * fix: uppercase fides key * fix: pylint * fix: exported taxonomy * feat: remove accidental files * fix: remove alignment spaces from data_uses csv * Add missing data use * Update export_default_taxonomy to generate root nodes and copy to docs CSVs * Run export_default_taxonomy locally * Fixes for taxonomy visualization * feat: make all of the data use updates based on the latest spreadsheet * docs: changelog * feat: update descriptions based on new spreadsheet * Apply suggestions from code review * fix: update exported resources * feat: add the authentication use --------- Co-authored-by: Neville Samuell --- .github/workflows/pr_checks.yml | 18 + CHANGELOG.md | 1 + data_files/data_categories.csv | 124 ++- data_files/data_categories.json | 604 ++++++++------ data_files/data_categories.yml | 750 +++++++++--------- data_files/data_qualifiers.csv | 14 +- data_files/data_qualifiers.json | 36 +- data_files/data_qualifiers.yml | 65 +- data_files/data_subjects.csv | 34 +- data_files/data_subjects.json | 137 +++- data_files/data_subjects.yml | 186 +++-- data_files/data_uses.csv | 72 +- data_files/data_uses.json | 655 +++++++++++++-- data_files/data_uses.yml | 680 +++++++++++++--- data_uses.csv | 47 ++ mkdocs/docs/css/taxonomy.css | 5 + mkdocs/docs/csv/data_categories.csv | 125 ++- mkdocs/docs/csv/data_qualifiers.csv | 14 +- mkdocs/docs/csv/data_subjects.csv | 34 +- mkdocs/docs/csv/data_uses.csv | 72 +- mkdocs/docs/js/vis.js | 103 +-- mkdocs/docs/js/vis2.js | 102 +-- mkdocs/mkdocs.yml | 3 +- scripts/export_default_taxonomy.py | 126 +++ src/fideslang/default_taxonomy/__init__.py | 12 +- .../default_taxonomy/data_qualifiers.py | 36 +- src/fideslang/default_taxonomy/data_uses.py | 344 ++++++-- src/fideslang/models.py | 6 +- tests/fideslang/test_default_taxonomy.py | 2 +- 29 files changed, 3039 insertions(+), 1368 deletions(-) create mode 100644 data_uses.csv create mode 100644 scripts/export_default_taxonomy.py diff --git a/.github/workflows/pr_checks.yml b/.github/workflows/pr_checks.yml index 68b987af..b93aa563 100644 --- a/.github/workflows/pr_checks.yml +++ b/.github/workflows/pr_checks.yml @@ -56,6 +56,24 @@ jobs: - name: Run formatter run: make black + Export: + runs-on: ubuntu-latest + steps: + - name: Checkout + uses: actions/checkout@v3 + + - name: Set Up Python + uses: actions/setup-python@v4 + with: + python-version: "3.10.11" + cache: "pip" + + - name: Install Package + run: pip install . + + - name: Run Export + run: python scripts/export_default_taxonomy.py + Pylint: needs: Build runs-on: ubuntu-latest diff --git a/CHANGELOG.md b/CHANGELOG.md index 1d1b58b7..1d1ff2d2 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -19,6 +19,7 @@ The types of changes are: ### Changed - Make `PrivacyDeclaration` use pydantic `orm_mode` [#101](https://github.com/ethyca/fideslang/pull/101) +- Updated the default data uses [#107](https://github.com/ethyca/fideslang/pull/107) ### Remove diff --git a/data_files/data_categories.csv b/data_files/data_categories.csv index 6ee1ccb7..96dc8401 100644 --- a/data_files/data_categories.csv +++ b/data_files/data_categories.csv @@ -1,66 +1,58 @@ -privacy_key,name,parent_key,description -data_category,Data Category,, -system,System Data,data_category,"Data unique to, and under control of the system." -system.authentication,Authentication Data,system,Data used to manage access to the system. -system.operations,Operations Data,system,Data used for system operations. -user,User Data,data_category,"Data related to the user of the system, either provided directly or derived based on their usage." -user.account,Account Data,user,Data related to a user's system account. -user.account.contact,Account Contact Data,user.account,Contact data related to a system account. -user.account.contact.city,Account City,user.account.contact,Account's city level address data. -user.account.contact.country,Account Country,user.account.contact,Account's country level address data. -user.account.contact.email,Account Email,user.account.contact,Account's email address. -user.account.contact.phone_number,Account Phone Number,user.account.contact,Account's phone number. -user.account.contact.postal_code,Account Postal Code,user.account.contact,Account's postal code. -user.account.contact.state,Account State,user.account.contact,Account's state level address data. -user.account.contact.street,Account Street,user.account.contact,Account's street level address. -user.account.payment,Payment Data,user.account,Payment data related to system account. -user.account.payment.financial_account_number,Account Payment Financial Account Number,user.account.payment,"Financial account number for an account's payment card, bank account, or other financial system." -user.device,Device Data,user,"Data related to a user's device, configuration, and settings." -user.device.cookie_id,Cookie ID,user.device,Cookie unique identification number. -user.device.device_id,Device ID,user.device,Device unique identification number. -user.device.ip_address,IP Address,user.device,Unique identifier related to device connection. -user.contact,Contact Data,user,User contact data for purposes other than account management. -user.contact.city,User Contact City,user.contact,"User's city level address data." -user.contact.country,User Contact Country,user.contact,"User's country level address data." -user.contact.email,User Contact Email,user.contact,"User's email address." -user.contact.phone_number,User Contact Phone Number,user.contact,"User's phone number." -user.contact.postal_code,User Contact Postal Code,user.contact,"User's postal code." -user.contact.state,User Contact State,user.contact,"User's state level address data." -user.contact.street,User Contact Street,user.contact,"User's street level address data." -user.credentials,Credentials,user,User authentication data. -user.credentials.biometric_credentials,Biometric Credentials,user.credentials,Credentials for system authentication. -user.credentials.password,Password,user.credentials,Password for system authentication. -user.financial,Financial Data,user,Payment data and financial history. -user.financial.account_number,Financial Account Number,user.financial,"User's account number for a payment card, bank account, or other financial system." -user.government_id,Government ID,user,State provided identification data. -user.government_id.drivers_license_number,"Driver's License Number",user.government_id,State issued driving identification number. -user.government_id.national_identification_number,National Identification Number,user.government_id,State issued personal identification number. -user.government_id.passport_number,Passport Number,user.government_id,State issued passport data. -user.biometric,Biometric Data,user,Encoded characteristics of a user. -user.biometric_health,Biometric Health Data,user,"Encoded characteristics of a user's health." -user.browsing_history,Browsing History,user,Content browsing history of a user. -user.childrens,Children's Data,user,Data relating to children. -user.date_of_birth,Date of Birth,user,"User's date of birth." -user.demographic,Demographic Data,user,Demographic data about a user. -user.gender,Gender,user,Gender of an individual. -user.genetic,Genetic Data,user,Data about the genetic makeup provided by a user. -user.health_and_medical,Health and Medical Data,user,"Health records or individual's personal medical information." -user.job_title,Job Title,user,Professional data. -user.location,Location Data,user,Records of the location of a user. -user.name,Name,user,"User's real name." -user.non_specific_age,Non-Specific Age,user,Age range data. -user.media_consumption,Media Consumption Data,user,Media type consumption data of a user. -user.observed,Observed Data,user,Data collected through observation of use of the system. -user.organization,Organization Data,user,Data that is linked to, or identifies an organization. -user.political_opinion,Political Opinion,user,"Data related to the individual's political opinions." -user.profiling,Profiling Data,user,Preference and interest data about a user. -user.race,Race,user,Racial or ethnic origin data. -user.religious_belief,Religious Belief,user,Religion or religious belief. -user.search_history,Search History,user,Records of search history and queries of a user. -user.sensor,Sensor Data,user,Non-user identifiable measurement data derived from sensors and monitoring systems. -user.sexual_orientation,Sexual Orientation,user,Personal sex life or sexual data. -user.social,Social Data,user,Social activity and interaction data. -user.telemetry,Telemetry Data,user,User measurement data from system sensors and monitoring. -user.unique_id,Unique ID,user,Unique identifier for a user assigned through system use. -user.user_sensor,User Sensor Data,user,Measurement data derived about a user's environment through system use. -user.workplace,Workplace,user,Organization of employment. \ No newline at end of file +fides_key,is_default,name,organization_fides_key,parent_key,tags,description +data_category,,Data Category,,,, +system,True,System Data,default_organization,data_category,,"Data unique to, and under control of the system." +system.authentication,True,Authentication Data,default_organization,system,,Data used to manage access to the system. +system.operations,True,Operations Data,default_organization,system,,Data used for system operations. +user,True,User Data,default_organization,data_category,,"Data related to the user of the system, either provided directly or derived based on their usage." +user.payment,True,Payment Data,default_organization,user,,Payment data related to user. +user.biometric,True,Biometric Data,default_organization,user,,Encoded characteristics provided by a user. +user.biometric_health,True,Biometric Health Data,default_organization,user,,Encoded characteristic collected about a user. +user.browsing_history,True,Browsing History,default_organization,user,,Content browsing history of a user. +user.demographic,True,Demographic Data,default_organization,user,,Demographic data about a user. +user.contact,True,Contact Data,default_organization,user,,Contact data collected about a user. +user.device,True,Device Data,default_organization,user,,"Data related to a user's device, configuration and setting." +user.gender,True,Gender,default_organization,user,,Gender of an individual. +user.location,True,Location Data,default_organization,user,,Records of the location of a user. +user.media_consumption,True,Media Consumption Data,default_organization,user,,Media type consumption data of a user. +user.non_specific_age,True,Non-Specific Age,default_organization,user,,Age range data. +user.observed,True,Observed Data,default_organization,user,,Data collected through observation of use of the system. +user.profiling,True,Profiling Data,default_organization,user,,Preference and interest data about a user. +user.race,True,Race,default_organization,user,,Racial or ethnic origin data. +user.religious_belief,True,Religious Belief,default_organization,user,,Religion or religious belief. +user.search_history,True,Search History,default_organization,user,,Records of search history and queries of a user. +user.sexual_orientation,True,Sexual Orientation,default_organization,user,,Personal sex life or sexual data. +user.social,True,Social Data,default_organization,user,,Social activity and interaction data. +user.telemetry,True,Telemetry Data,default_organization,user,,User identifiable measurement data from system sensors and monitoring. +user.unique_id,True,Unique ID,default_organization,user,,Unique identifier for a user assigned through system use. +user.user_sensor,True,User Sensor Data,default_organization,user,,Measurement data about a user's environment through system use. +user.organization,True,Organization Identifiable Data,default_organization,user,,"Data that is linked to, or identifies an organization." +user.workplace,True,Workplace,default_organization,user,,Organization of employment. +user.sensor,True,Sensor Data,default_organization,user,,Measurement data from sensors and monitoring systems. +user.childrens,True,Children's Data,default_organization,user,,Data relating to children. +user.credentials,True,Credentials,default_organization,user,,User authentication data. +user.date_of_birth,True,Date of Birth,default_organization,user,,User's date of birth. +user.financial,True,Financial Data,default_organization,user,,Payment data and financial history. +user.genetic,True,Genetic Data,default_organization,user,,Data about the genetic makeup provided by a user. +user.government_id,True,Government ID,default_organization,user,,State provided identification data. +user.health_and_medical,True,Health and Medical Data,default_organization,user,,Health records or individual's personal medical information. +user.job_title,True,Job Title,default_organization,user,,Professional data. +user.name,True,Name,default_organization,user,,User's real name. +user.political_opinion,True,Political Opinion,default_organization,user,,Data related to the individual's political opinions. +user.contact.address,True,Contact Data,default_organization,user.contact,,Contact address data collected about a user. +user.contact.email,True,User Contact Email,default_organization,user.contact,,User's contact email address. +user.contact.phone_number,True,User Contact Phone Number,default_organization,user.contact,,User's phone number. +user.contact.address.city,True,User Contact City,default_organization,user.contact.address,,User's city level address data. +user.contact.address.country,True,User Contact Country,default_organization,user.contact.address,,User's country level address data. +user.contact.address.postal_code,True,User Contact Postal Code,default_organization,user.contact.address,,User's postal code. +user.contact.address.state,True,User Contact State,default_organization,user.contact.address,,User's state level address data. +user.contact.address.street,True,User Contact Street,default_organization,user.contact.address,,User's street level address data. +user.credentials.biometric_credentials,True,Biometric Credentials,default_organization,user.credentials,,Credentials for system authentication. +user.credentials.password,True,Password,default_organization,user.credentials,,Password for system authentication. +user.device.cookie_id,True,Cookie ID,default_organization,user.device,,Cookie unique identification number. +user.device.device_id,True,Device ID,default_organization,user.device,,Device unique identification number. +user.device.ip_address,True,IP Address,default_organization,user.device,,Unique identifier related to device connection. +user.financial.account_number,True,User Financial Account Number,default_organization,user.financial,,"User's account number for a payment card, bank account, or other financial system." +user.government_id.drivers_license_number,True,Driver's License Number,default_organization,user.government_id,,State issued driving identification number. +user.government_id.national_identification_number,True,National Identification Number,default_organization,user.government_id,,State issued personal identification number. +user.government_id.passport_number,True,Passport Number,default_organization,user.government_id,,State issued passport data. +user.payment.financial_account_number,True,Account Payment Financial Account Number,default_organization,user.payment,,"Financial account number for an account's payment card, bank account, or other financial system." diff --git a/data_files/data_categories.json b/data_files/data_categories.json index ecbd0ed9..7c7a507f 100644 --- a/data_files/data_categories.json +++ b/data_files/data_categories.json @@ -1,428 +1,508 @@ { "data_category": [ { - "privacy_key": "user.account", - "name": "Account Data", - "parent_key": "user", - "description": "Data related to a user's system account." - }, - { - "privacy_key": "user.account.contact", - "name": "Account Contact Data", - "parent_key": "user.account", - "description": "Contact data related to a user account." - }, - { - "privacy_key": "user.account.contact.city", - "name": "Account City", - "parent_key": "user.account.contact", - "description": "Account's city level address data." - }, - { - "privacy_key": "user.account.contact.country", - "name": "Account Country", - "parent_key": "user.account.contact", - "description": "Account's country level address data." - }, - { - "privacy_key": "user.account.contact.email", - "name": "Account Email", - "parent_key": "user.account.contact", - "description": "Account's email address." - }, - { - "privacy_key": "user.account.contact.phone_number", - "name": "Account Phone Number", - "parent_key": "user.account.contact", - "description": "Account's phone number." - }, - { - "privacy_key": "user.account.contact.postal_code", - "name": "Account Postal Code", - "parent_key": "user.account.contact", - "description": "Account's postal code." - }, - { - "privacy_key": "user.account.contact.state", - "name": "Account State", - "parent_key": "user.account.contact", - "description": "Account's state level address data." - }, - { - "privacy_key": "user.account.contact.street", - "name": "Account Street", - "parent_key": "user.account.contact", - "description": "Account's street level address." - }, - { - "privacy_key": "user.account.payment", - "name": "Payment Data", - "parent_key": "account", - "description": "Payment data related to a user account." - }, - { - "privacy_key": "user.account.payment.financial_account_number", - "name": "Account Payment Financial Account Number", - "parent_key": "user.account.payment", - "description": "Financial account number for an account's payment card, bank account, or other financial system." - }, - { - "privacy_key": "system", + "fides_key": "system", + "organization_fides_key": "default_organization", + "tags": null, "name": "System Data", - "description": "Data unique to, and under control of the system." + "description": "Data unique to, and under control of the system.", + "parent_key": null, + "is_default": true }, { - "privacy_key": "system.authentication", + "fides_key": "system.authentication", + "organization_fides_key": "default_organization", + "tags": null, "name": "Authentication Data", + "description": "Data used to manage access to the system.", "parent_key": "system", - "description": "Data used to manage access to the system." + "is_default": true }, { - "privacy_key": "system.operations", + "fides_key": "system.operations", + "organization_fides_key": "default_organization", + "tags": null, "name": "Operations Data", + "description": "Data used for system operations.", "parent_key": "system", - "description": "Data used for system operations." + "is_default": true }, { - "privacy_key": "user", + "fides_key": "user", + "organization_fides_key": "default_organization", + "tags": null, "name": "User Data", - "description": "Data related to the user of the system, either provided directly or derived based on their usage." + "description": "Data related to the user of the system, either provided directly or derived based on their usage.", + "parent_key": null, + "is_default": true }, { - "privacy_key": "user.biometric_health", + "fides_key": "user.payment", + "organization_fides_key": "default_organization", + "tags": null, + "name": "Payment Data", + "description": "Payment data related to user.", + "parent_key": "user", + "is_default": true + }, + { + "fides_key": "user.biometric", + "organization_fides_key": "default_organization", + "tags": null, + "name": "Biometric Data", + "description": "Encoded characteristics provided by a user.", + "parent_key": "user", + "is_default": true + }, + { + "fides_key": "user.biometric_health", + "organization_fides_key": "default_organization", + "tags": null, "name": "Biometric Health Data", + "description": "Encoded characteristic collected about a user.", "parent_key": "user", - "description": "Encoded characteristic collected about a user." + "is_default": true }, { - "privacy_key": "user.browsing_history", + "fides_key": "user.browsing_history", + "organization_fides_key": "default_organization", + "tags": null, "name": "Browsing History", + "description": "Content browsing history of a user.", "parent_key": "user", - "description": "Content browsing history of a user." + "is_default": true }, { - "privacy_key": "user.demographic", + "fides_key": "user.demographic", + "organization_fides_key": "default_organization", + "tags": null, "name": "Demographic Data", + "description": "Demographic data about a user.", "parent_key": "user", - "description": "Demographic data about a user." + "is_default": true }, { - "privacy_key": "user.contact", + "fides_key": "user.contact", + "organization_fides_key": "default_organization", + "tags": null, "name": "Contact Data", + "description": "Contact data collected about a user.", "parent_key": "user", - "description": "Contact data collected about a user." + "is_default": true }, { - "privacy_key": "user.device", + "fides_key": "user.device", + "organization_fides_key": "default_organization", + "tags": null, "name": "Device Data", + "description": "Data related to a user's device, configuration and setting.", "parent_key": "user", - "description": "Data related to a user's device, configuration and setting." - }, - { - "privacy_key": "user.device.cookie_id", - "name": "Cookie ID", - "parent_key": "user.device", - "description": "Cookie unique identification number." + "is_default": true }, { - "privacy_key": "user.device.device_id", - "name": "Device ID", - "parent_key": "user.device", - "description": "Device unique identification number." - }, - { - "privacy_key": "user.device.ip_address", - "name": "IP Address", - "parent_key": "user.device", - "description": "Unique identifier related to device connection." - }, - { - "privacy_key": "user.gender", + "fides_key": "user.gender", + "organization_fides_key": "default_organization", + "tags": null, "name": "Gender", + "description": "Gender of an individual.", "parent_key": "user", - "description": "Gender of an individual." + "is_default": true }, { - "privacy_key": "user.location", + "fides_key": "user.location", + "organization_fides_key": "default_organization", + "tags": null, "name": "Location Data", + "description": "Records of the location of a user.", "parent_key": "user", - "description": "Records of the location of a user." + "is_default": true }, { - "privacy_key": "user.media_consumption", + "fides_key": "user.media_consumption", + "organization_fides_key": "default_organization", + "tags": null, "name": "Media Consumption Data", + "description": "Media type consumption data of a user.", "parent_key": "user", - "description": "Media type consumption data of a user." + "is_default": true }, { - "privacy_key": "user.non_specific_age", + "fides_key": "user.non_specific_age", + "organization_fides_key": "default_organization", + "tags": null, "name": "Non-Specific Age", + "description": "Age range data.", "parent_key": "user", - "description": "Age range data." + "is_default": true }, { - "privacy_key": "user.observed", + "fides_key": "user.observed", + "organization_fides_key": "default_organization", + "tags": null, "name": "Observed Data", + "description": "Data collected through observation of use of the system.", "parent_key": "user", - "description": "Data collected through observation of use of the system." + "is_default": true }, { - "privacy_key": "user.profiling", + "fides_key": "user.profiling", + "organization_fides_key": "default_organization", + "tags": null, "name": "Profiling Data", + "description": "Preference and interest data about a user.", "parent_key": "user", - "description": "Preference and interest data about a user." + "is_default": true }, { - "privacy_key": "user.race", + "fides_key": "user.race", + "organization_fides_key": "default_organization", + "tags": null, "name": "Race", + "description": "Racial or ethnic origin data.", "parent_key": "user", - "description": "Racial or ethnic origin data." + "is_default": true }, { - "privacy_key": "user.religious_belief", + "fides_key": "user.religious_belief", + "organization_fides_key": "default_organization", + "tags": null, "name": "Religious Belief", + "description": "Religion or religious belief.", "parent_key": "user", - "description": "Religion or religious belief." + "is_default": true }, { - "privacy_key": "user.search_history", + "fides_key": "user.search_history", + "organization_fides_key": "default_organization", + "tags": null, "name": "Search History", + "description": "Records of search history and queries of a user.", "parent_key": "user", - "description": "Records of search history and queries of a user." + "is_default": true }, { - "privacy_key": "user.sexual_orientation", + "fides_key": "user.sexual_orientation", + "organization_fides_key": "default_organization", + "tags": null, "name": "Sexual Orientation", + "description": "Personal sex life or sexual data.", "parent_key": "user", - "description": "Personal sex life or sexual data." + "is_default": true }, { - "privacy_key": "user.social", + "fides_key": "user.social", + "organization_fides_key": "default_organization", + "tags": null, "name": "Social Data", + "description": "Social activity and interaction data.", "parent_key": "user", - "description": "Social activity and interaction data." + "is_default": true }, { - "privacy_key": "user.telemetry", + "fides_key": "user.telemetry", + "organization_fides_key": "default_organization", + "tags": null, "name": "Telemetry Data", + "description": "User identifiable measurement data from system sensors and monitoring.", "parent_key": "user", - "description": "User identifiable measurement data from system sensors and monitoring." + "is_default": true }, { - "privacy_key": "user.unique_id", + "fides_key": "user.unique_id", + "organization_fides_key": "default_organization", + "tags": null, "name": "Unique ID", + "description": "Unique identifier for a user assigned through system use.", "parent_key": "user", - "description": "Unique identifier for a user assigned through system use." + "is_default": true }, { - "privacy_key": "user.user_sensor", + "fides_key": "user.user_sensor", + "organization_fides_key": "default_organization", + "tags": null, "name": "User Sensor Data", + "description": "Measurement data about a user's environment through system use.", "parent_key": "user", - "description": "Measurement data derived about a user's environment through system use." + "is_default": true }, { - "privacy_key": "user.organization", + "fides_key": "user.organization", + "organization_fides_key": "default_organization", + "tags": null, "name": "Organization Identifiable Data", + "description": "Data that is linked to, or identifies an organization.", "parent_key": "user", - "description": "data that is linked to, or identifies an organization." + "is_default": true }, { - "privacy_key": "user.workplace", + "fides_key": "user.workplace", + "organization_fides_key": "default_organization", + "tags": null, "name": "Workplace", + "description": "Organization of employment.", "parent_key": "user", - "description": "Organization of employment." + "is_default": true }, { - "privacy_key": "user.sensor", + "fides_key": "user.sensor", + "organization_fides_key": "default_organization", + "tags": null, "name": "Sensor Data", + "description": "Measurement data from sensors and monitoring systems.", "parent_key": "user", - "description": "Non-user identifiable measurement data derived from sensors and monitoring systems." - }, - { - "privacy_key": "user.biometric", - "name": "Biometric Data", - "parent_key": "user", - "description": "Encoded characteristics provided by a user." + "is_default": true }, { - "privacy_key": "user.childrens", + "fides_key": "user.childrens", + "organization_fides_key": "default_organization", + "tags": null, "name": "Children's Data", + "description": "Data relating to children.", "parent_key": "user", - "description": "Data relating to children." + "is_default": true }, { - "privacy_key": "user.contact", - "name": "Contact Data", + "fides_key": "user.credentials", + "organization_fides_key": "default_organization", + "tags": null, + "name": "Credentials", + "description": "User authentication data.", "parent_key": "user", - "description": "User provided contact data for purposes other than account management." + "is_default": true }, { - "privacy_key": "user.contact.city", - "name": "User City", - "parent_key": "user.contact", - "description": "User's city level address data." - }, - { - "privacy_key": "user.contact.country", - "name": "User Country", - "parent_key": "user.contact", - "description": "User's country level address data." - }, - { - "privacy_key": "user.contact.email", - "name": "User Email", - "parent_key": "user.contact", - "description": "User's provided email address." + "fides_key": "user.date_of_birth", + "organization_fides_key": "default_organization", + "tags": null, + "name": "Date of Birth", + "description": "User's date of birth.", + "parent_key": "user", + "is_default": true }, { - "privacy_key": "user.contact.phone_number", - "name": "User Phone Number", - "parent_key": "user.contact", - "description": "User's phone number." + "fides_key": "user.financial", + "organization_fides_key": "default_organization", + "tags": null, + "name": "Financial Data", + "description": "Payment data and financial history.", + "parent_key": "user", + "is_default": true }, { - "privacy_key": "user.contact.postal_code", - "name": "User Postal Code", - "parent_key": "user.contact", - "description": "User's postal code." + "fides_key": "user.genetic", + "organization_fides_key": "default_organization", + "tags": null, + "name": "Genetic Data", + "description": "Data about the genetic makeup provided by a user.", + "parent_key": "user", + "is_default": true }, { - "privacy_key": "user.contact.state", - "name": "User State", - "parent_key": "user.contact", - "description": "User's state level address data." + "fides_key": "user.government_id", + "organization_fides_key": "default_organization", + "tags": null, + "name": "Government ID", + "description": "State provided identification data.", + "parent_key": "user", + "is_default": true }, { - "privacy_key": "user.contact.street", - "name": "User Street", - "parent_key": "user.contact", - "description": "User's street level address data." + "fides_key": "user.health_and_medical", + "organization_fides_key": "default_organization", + "tags": null, + "name": "Health and Medical Data", + "description": "Health records or individual's personal medical information.", + "parent_key": "user", + "is_default": true }, { - "privacy_key": "user.credentials", - "name": "Credentials", + "fides_key": "user.job_title", + "organization_fides_key": "default_organization", + "tags": null, + "name": "Job Title", + "description": "Professional data.", "parent_key": "user", - "description": "User authentication data." + "is_default": true }, { - "privacy_key": "user.credentials.biometric_credentials", - "name": "Biometric Credentials", - "parent_key": "user.credentials", - "description": "Credentials for system authentication." + "fides_key": "user.name", + "organization_fides_key": "default_organization", + "tags": null, + "name": "Name", + "description": "User's real name.", + "parent_key": "user", + "is_default": true }, { - "privacy_key": "user.credentials.password", - "name": "Password", - "parent_key": "user.credentials", - "description": "Password for system authentication." + "fides_key": "user.political_opinion", + "organization_fides_key": "default_organization", + "tags": null, + "name": "Political Opinion", + "description": "Data related to the individual's political opinions.", + "parent_key": "user", + "is_default": true }, { - "privacy_key": "user.date_of_birth", - "name": "Date of Birth", - "parent_key": "user", - "description": "User's date of birth." + "fides_key": "user.contact.address", + "organization_fides_key": "default_organization", + "tags": null, + "name": "Contact Data", + "description": "Contact address data collected about a user.", + "parent_key": "user.contact", + "is_default": true }, { - "privacy_key": "user.financial", - "name": "Financial Data", - "parent_key": "user", - "description": "Payment data and financial history." + "fides_key": "user.contact.email", + "organization_fides_key": "default_organization", + "tags": null, + "name": "User Contact Email", + "description": "User's contact email address.", + "parent_key": "user.contact", + "is_default": true }, { - "privacy_key": "user.financial.account_number", - "name": "User Financial Account Number", - "parent_key": "user.financial", - "description": "User's account number for a payment card, bank account, or other financial system." + "fides_key": "user.contact.phone_number", + "organization_fides_key": "default_organization", + "tags": null, + "name": "User Contact Phone Number", + "description": "User's phone number.", + "parent_key": "user.contact", + "is_default": true }, { - "privacy_key": "user.gender", - "name": "User Gender", - "parent_key": "user", - "description": "Gender of an individual." + "fides_key": "user.contact.address.city", + "organization_fides_key": "default_organization", + "tags": null, + "name": "User Contact City", + "description": "User's city level address data.", + "parent_key": "user.contact.address", + "is_default": true }, { - "privacy_key": "user.genetic", - "name": "Genetic Data", - "parent_key": "user", - "description": "Data about the genetic makeup by a user." + "fides_key": "user.contact.address.country", + "organization_fides_key": "default_organization", + "tags": null, + "name": "User Contact Country", + "description": "User's country level address data.", + "parent_key": "user.contact.address", + "is_default": true }, { - "privacy_key": "user.government_id", - "name": "Government ID", - "parent_key": "user", - "description": "State identification data." + "fides_key": "user.contact.address.postal_code", + "organization_fides_key": "default_organization", + "tags": null, + "name": "User Contact Postal Code", + "description": "User's postal code.", + "parent_key": "user.contact.address", + "is_default": true }, { - "privacy_key": "user.government_id.drivers_license_number", - "name": "Driver's License Number", - "parent_key": "user.government_id", - "description": "State issued driving identification number." + "fides_key": "user.contact.address.state", + "organization_fides_key": "default_organization", + "tags": null, + "name": "User Contact State", + "description": "User's state level address data.", + "parent_key": "user.contact.address", + "is_default": true }, { - "privacy_key": "user.government_id.national_identification_number", - "name": "National Identification Number", - "parent_key": "user.government_id", - "description": "State issued personal identification number." + "fides_key": "user.contact.address.street", + "organization_fides_key": "default_organization", + "tags": null, + "name": "User Contact Street", + "description": "User's street level address data.", + "parent_key": "user.contact.address", + "is_default": true }, { - "privacy_key": "user.government_id.passport_number", - "name": "Passport Number", - "parent_key": "user.government_id", - "description": "State issued passport data." + "fides_key": "user.credentials.biometric_credentials", + "organization_fides_key": "default_organization", + "tags": null, + "name": "Biometric Credentials", + "description": "Credentials for system authentication.", + "parent_key": "user.credentials", + "is_default": true }, { - "privacy_key": "user.health_and_medical", - "name": "Health and Medical Data", - "parent_key": "user", - "description": "Health records or individual's personal medical information." + "fides_key": "user.credentials.password", + "organization_fides_key": "default_organization", + "tags": null, + "name": "Password", + "description": "Password for system authentication.", + "parent_key": "user.credentials", + "is_default": true }, { - "privacy_key": "user.job_title", - "name": "Job Title", - "parent_key": "user", - "description": "Professional data." + "fides_key": "user.device.cookie_id", + "organization_fides_key": "default_organization", + "tags": null, + "name": "Cookie ID", + "description": "Cookie unique identification number.", + "parent_key": "user.device", + "is_default": true }, { - "privacy_key": "user.name", - "name": "Name", - "parent_key": "user", - "description": "User's real name." + "fides_key": "user.device.device_id", + "organization_fides_key": "default_organization", + "tags": null, + "name": "Device ID", + "description": "Device unique identification number.", + "parent_key": "user.device", + "is_default": true }, { - "privacy_key": "user.non_specific_age", - "name": "User Non-Specific Age", - "parent_key": "user", - "description": "Age range data." + "fides_key": "user.device.ip_address", + "organization_fides_key": "default_organization", + "tags": null, + "name": "IP Address", + "description": "Unique identifier related to device connection.", + "parent_key": "user.device", + "is_default": true }, { - "privacy_key": "user.political_opinion", - "name": "Political Opinion", - "parent_key": "user", - "description": "Data related to the individual's political opinions." + "fides_key": "user.financial.account_number", + "organization_fides_key": "default_organization", + "tags": null, + "name": "User Financial Account Number", + "description": "User's account number for a payment card, bank account, or other financial system.", + "parent_key": "user.financial", + "is_default": true }, { - "privacy_key": "user.race", - "name": "User Race", - "parent_key": "user", - "description": "Racial or ethnic origin data." + "fides_key": "user.government_id.drivers_license_number", + "organization_fides_key": "default_organization", + "tags": null, + "name": "Driver's License Number", + "description": "State issued driving identification number.", + "parent_key": "user.government_id", + "is_default": true }, { - "privacy_key": "user.religious_belief", - "name": "User Religious Belief", - "parent_key": "user", - "description": "Religion or religious belief." + "fides_key": "user.government_id.national_identification_number", + "organization_fides_key": "default_organization", + "tags": null, + "name": "National Identification Number", + "description": "State issued personal identification number.", + "parent_key": "user.government_id", + "is_default": true }, { - "privacy_key": "user.sexual_orientation", - "name": "User Sexual Orientation", - "parent_key": "user", - "description": "Personal sex life or sexual data." + "fides_key": "user.government_id.passport_number", + "organization_fides_key": "default_organization", + "tags": null, + "name": "Passport Number", + "description": "State issued passport data.", + "parent_key": "user.government_id", + "is_default": true }, { - "privacy_key": "user.workplace", - "name": "User Workplace", - "parent_key": "user", - "description": "Organization of employment." + "fides_key": "user.payment.financial_account_number", + "organization_fides_key": "default_organization", + "tags": null, + "name": "Account Payment Financial Account Number", + "description": "Financial account number for an account's payment card, bank account, or other financial system.", + "parent_key": "user.payment", + "is_default": true } ] } diff --git a/data_files/data_categories.yml b/data_files/data_categories.yml index f3dccc05..7be2ddb6 100644 --- a/data_files/data_categories.yml +++ b/data_files/data_categories.yml @@ -1,356 +1,396 @@ data_category: - # Account Data -- Data related to an account in the system. - - privacy_key: user.account - name: Account Data - parent_key: user - description: Data related to a user account - - - privacy_key: user.account.contact - name: Account Contact Data - parent_key: user.account - description: Contact data related to a user account. - - - privacy_key: user.account.contact.city - name: Account City - parent_key: user.account.contact - description: Account's city level address data. - - - privacy_key: user.account.contact.country - name: Account Country - parent_key: user.account.contact - description: Account's country level address data. - - - privacy_key: user.account.contact.email - name: Account Email - parent_key: user.account.contact - description: Account's email address. - - - privacy_key: user.account.contact.phone_number - name: Account Phone Number - parent_key: user.account.contact - description: Account's phone number. - - - privacy_key: user.account.contact.postal_code - name: Account Postal Code - parent_key: user.account.contact - description: Account's postal code. - - - privacy_key: user.account.contact.state - name: Account State - parent_key: user.account.contact - description: Account's state level address data. - - - privacy_key: user.account.contact.street - name: Account Street - parent_key: user.account.contact - description: Account's street level address. - - - privacy_key: user.account.payment - name: Payment Data - parent_key: account - description: Payment data related to a user account. - - - privacy_key: user.account.payment.financial_account_number - name: Account Payment Financial Account Number - parent_key: user.account.payment - description: Financial account number for an account's payment card, bank account, or other financial system. - - # System Data -- Data unique to and under management of the system. - - privacy_key: system - name: System Data - description: Data unique to, and under control of the system. - - - privacy_key: system.authentication - name: Authentication Data - parent_key: system - description: Data used to manage access to the system. - - - privacy_key: system.operations - name: Operations Data - parent_key: system - description: Data used for system operations. - - # User Data -- Data related to an individual user of the system. - - privacy_key: user - name: User Data - description: Data related to the user of the system, either provided directly or derived based on their usage. - - - privacy_key: user.biometric_health - name: Biometric Health Data - parent_key: user - description: Encoded characteristic collected about a user. - - - privacy_key: user.browsing_history - name: Browsing History - parent_key: user - description: Content browsing history of a user. - - - privacy_key: user.demographic - name: Demographic Data - parent_key: user - description: Demographic data about a user. - - - privacy_key: user.contact - name: Contact Data - parent_key: user - description: Contact data collected about a user. - - - privacy_key: user.device - name: Device Data - parent_key: user - description: Data related to a user's device, configuration and setting. - - - privacy_key: user.device.cookie_id - name: Cookie ID - parent_key: user.device - description: Cookie unique identification number. - - - privacy_key: user.device.device_id - name: Device ID - parent_key: user.device - description: Device unique identification number. - - - privacy_key: user.device.ip_address - name: IP Address - parent_key: user.device - description: Unique identifier related to device connection. - - - privacy_key: user.gender - name: Gender - parent_key: user - description: Gender of an individual. - - - privacy_key: user.location - name: Location Data - parent_key: user - description: Records of the location of a user. - - - privacy_key: user.media_consumption - name: Media Consumption Data - parent_key: user - description: Media type consumption data of a user. - - - privacy_key: user.non_specific_age - name: Non-Specific Age - parent_key: user - description: Age range data. - - - privacy_key: user.observed - name: Observed Data - parent_key: user - description: Data collected through observation of use of the system. - - - privacy_key: user.profiling - name: Profiling Data - parent_key: user - description: Preference and interest data about a user. - - - privacy_key: user.race - name: Race - parent_key: user - description: Racial or ethnic origin data. - - - privacy_key: user.religious_belief - name: Religious Belief - parent_key: user - description: Religion or religious belief. - - - privacy_key: user.search_history - name: Search History - parent_key: user - description: Records of search history and queries of a user. - - - privacy_key: user.sexual_orientation - name: Sexual Orientation - parent_key: user - description: Personal sex life or sexual data. - - - privacy_key: user.social - name: Social Data - parent_key: user - description: Social activity and interaction data. - - - privacy_key: user.telemetry - name: Telemetry Data - parent_key: user - description: User identifiable measurement data from system sensors and monitoring. - - - privacy_key: user.unique_id - name: Unique ID - parent_key: user - description: Unique identifier for a user assigned through system use. - - - privacy_key: user.user_sensor - name: User Sensor Data - parent_key: user - description: Measurement data derived about a user's environment through system use. - - - privacy_key: user.organization - name: Organization Identifiable Data - parent_key: user - description: data that is linked to, or identifies an organization. - - - privacy_key: user.workplace - name: Workplace - parent_key: user - description: Organization of employment. - - - privacy_key: user.sensor - name: Sensor Data - parent_key: user - description: Non-user identifiable measurement data derived from sensors and monitoring systems. - - - privacy_key: user.biometric - name: Biometric Data - parent_key: user - description: Encoded characteristics provided by a user. - - - privacy_key: user.childrens - name: Children's Data - parent_key: user - description: Data relating to children. - - - privacy_key: user.contact - name: Contact Data - parent_key: user - description: User provided contact data for purposes other than account management. - - - privacy_key: user.contact.city - name: User City - parent_key: user.contact - description: User's city level address data. - - - privacy_key: user.contact.country - name: User Country - parent_key: user.contact - description: User's country level address data. - - - privacy_key: user.contact.email - name: User Email - parent_key: user.contact - description: User's provided email address. - - - privacy_key: user.contact.phone_number - name: User Phone Number - parent_key: user.contact - description: User's phone number. - - - privacy_key: user.contact.postal_code - name: User Postal Code - parent_key: user.contact - description: User's postal code. - - - privacy_key: user.contact.state - name: User State - parent_key: user.contact - description: User's state level address data. - - - privacy_key: user.contact.street - name: User Street - parent_key: user.contact - description: User's street level address data. - - - privacy_key: user.credentials - name: Credentials - parent_key: user - description: User provided authentication data. - - - privacy_key: user.credentials.biometric_credentials - name: Biometric Credentials - parent_key: user.credentials - description: Credentials for system authentication. - - - privacy_key: user.credentials.password - name: Password - parent_key: user.credentials - description: Password for system authentication. - - - privacy_key: user.date_of_birth - name: Date of Birth - parent_key: user - description: User's date of birth. - - - privacy_key: user.financial - name: Financial Data - parent_key: user - description: Payment data and financial history. - - - privacy_key: user.financial.account_number - name: User Financial Account Number - parent_key: user.financial - description: User's account number for a payment card, bank account, or other financial system. - - - privacy_key: user.gender - name: User Gender - parent_key: user - description: Gender of an individual. - - - privacy_key: user.genetic - name: Genetic Data - parent_key: user - description: Data about the genetic makeup provided by a user. - - - privacy_key: user.government_id - name: Government ID - parent_key: user - description: State provided identification data. - - - privacy_key: user.government_id.drivers_license_number - name: Driver's License Number - parent_key: user.government_id - description: State issued driving identification number. - - - privacy_key: user.government_id.national_identification_number - name: National Identification Number - parent_key: user.government_id - description: State issued personal identification number. - - - privacy_key: user.government_id.passport_number - name: Passport Number - parent_key: user.government_id - description: State issued passport data. - - - privacy_key: user.health_and_medical - name: Health and Medical Data - parent_key: user - description: Health records or individual's personal medical information. - - - privacy_key: user.job_title - name: Job Title - parent_key: user - description: Professional data. - - - privacy_key: user.name - name: Name - parent_key: user - description: User's real name. - - - privacy_key: user.non_specific_age - name: User Non-Specific Age - parent_key: user - description: Age range data. - - - privacy_key: user.political_opinion - name: Political Opinion - parent_key: user - description: Data related to the individual's political opinions. - - - privacy_key: user.race - name: User Race - parent_key: user - description: Racial or ethnic origin data. - - - privacy_key: user.religious_belief - name: User Religious Belief - parent_key: user - description: Religion or religious belief. - - - privacy_key: user.sexual_orientation - name: User Sexual Orientation - parent_key: user - description: Personal sex life or sexual data. - - - privacy_key: user.workplace - name: User Workplace - parent_key: user - description: Organization of employment. +- fides_key: system + organization_fides_key: default_organization + tags: null + name: System Data + description: Data unique to, and under control of the system. + parent_key: null + is_default: true +- fides_key: system.authentication + organization_fides_key: default_organization + tags: null + name: Authentication Data + description: Data used to manage access to the system. + parent_key: system + is_default: true +- fides_key: system.operations + organization_fides_key: default_organization + tags: null + name: Operations Data + description: Data used for system operations. + parent_key: system + is_default: true +- fides_key: user + organization_fides_key: default_organization + tags: null + name: User Data + description: Data related to the user of the system, either provided directly or + derived based on their usage. + parent_key: null + is_default: true +- fides_key: user.payment + organization_fides_key: default_organization + tags: null + name: Payment Data + description: Payment data related to user. + parent_key: user + is_default: true +- fides_key: user.biometric + organization_fides_key: default_organization + tags: null + name: Biometric Data + description: Encoded characteristics provided by a user. + parent_key: user + is_default: true +- fides_key: user.biometric_health + organization_fides_key: default_organization + tags: null + name: Biometric Health Data + description: Encoded characteristic collected about a user. + parent_key: user + is_default: true +- fides_key: user.browsing_history + organization_fides_key: default_organization + tags: null + name: Browsing History + description: Content browsing history of a user. + parent_key: user + is_default: true +- fides_key: user.demographic + organization_fides_key: default_organization + tags: null + name: Demographic Data + description: Demographic data about a user. + parent_key: user + is_default: true +- fides_key: user.contact + organization_fides_key: default_organization + tags: null + name: Contact Data + description: Contact data collected about a user. + parent_key: user + is_default: true +- fides_key: user.device + organization_fides_key: default_organization + tags: null + name: Device Data + description: Data related to a user's device, configuration and setting. + parent_key: user + is_default: true +- fides_key: user.gender + organization_fides_key: default_organization + tags: null + name: Gender + description: Gender of an individual. + parent_key: user + is_default: true +- fides_key: user.location + organization_fides_key: default_organization + tags: null + name: Location Data + description: Records of the location of a user. + parent_key: user + is_default: true +- fides_key: user.media_consumption + organization_fides_key: default_organization + tags: null + name: Media Consumption Data + description: Media type consumption data of a user. + parent_key: user + is_default: true +- fides_key: user.non_specific_age + organization_fides_key: default_organization + tags: null + name: Non-Specific Age + description: Age range data. + parent_key: user + is_default: true +- fides_key: user.observed + organization_fides_key: default_organization + tags: null + name: Observed Data + description: Data collected through observation of use of the system. + parent_key: user + is_default: true +- fides_key: user.profiling + organization_fides_key: default_organization + tags: null + name: Profiling Data + description: Preference and interest data about a user. + parent_key: user + is_default: true +- fides_key: user.race + organization_fides_key: default_organization + tags: null + name: Race + description: Racial or ethnic origin data. + parent_key: user + is_default: true +- fides_key: user.religious_belief + organization_fides_key: default_organization + tags: null + name: Religious Belief + description: Religion or religious belief. + parent_key: user + is_default: true +- fides_key: user.search_history + organization_fides_key: default_organization + tags: null + name: Search History + description: Records of search history and queries of a user. + parent_key: user + is_default: true +- fides_key: user.sexual_orientation + organization_fides_key: default_organization + tags: null + name: Sexual Orientation + description: Personal sex life or sexual data. + parent_key: user + is_default: true +- fides_key: user.social + organization_fides_key: default_organization + tags: null + name: Social Data + description: Social activity and interaction data. + parent_key: user + is_default: true +- fides_key: user.telemetry + organization_fides_key: default_organization + tags: null + name: Telemetry Data + description: User identifiable measurement data from system sensors and monitoring. + parent_key: user + is_default: true +- fides_key: user.unique_id + organization_fides_key: default_organization + tags: null + name: Unique ID + description: Unique identifier for a user assigned through system use. + parent_key: user + is_default: true +- fides_key: user.user_sensor + organization_fides_key: default_organization + tags: null + name: User Sensor Data + description: Measurement data about a user's environment through system use. + parent_key: user + is_default: true +- fides_key: user.organization + organization_fides_key: default_organization + tags: null + name: Organization Identifiable Data + description: Data that is linked to, or identifies an organization. + parent_key: user + is_default: true +- fides_key: user.workplace + organization_fides_key: default_organization + tags: null + name: Workplace + description: Organization of employment. + parent_key: user + is_default: true +- fides_key: user.sensor + organization_fides_key: default_organization + tags: null + name: Sensor Data + description: Measurement data from sensors and monitoring systems. + parent_key: user + is_default: true +- fides_key: user.childrens + organization_fides_key: default_organization + tags: null + name: Children's Data + description: Data relating to children. + parent_key: user + is_default: true +- fides_key: user.credentials + organization_fides_key: default_organization + tags: null + name: Credentials + description: User authentication data. + parent_key: user + is_default: true +- fides_key: user.date_of_birth + organization_fides_key: default_organization + tags: null + name: Date of Birth + description: User's date of birth. + parent_key: user + is_default: true +- fides_key: user.financial + organization_fides_key: default_organization + tags: null + name: Financial Data + description: Payment data and financial history. + parent_key: user + is_default: true +- fides_key: user.genetic + organization_fides_key: default_organization + tags: null + name: Genetic Data + description: Data about the genetic makeup provided by a user. + parent_key: user + is_default: true +- fides_key: user.government_id + organization_fides_key: default_organization + tags: null + name: Government ID + description: State provided identification data. + parent_key: user + is_default: true +- fides_key: user.health_and_medical + organization_fides_key: default_organization + tags: null + name: Health and Medical Data + description: Health records or individual's personal medical information. + parent_key: user + is_default: true +- fides_key: user.job_title + organization_fides_key: default_organization + tags: null + name: Job Title + description: Professional data. + parent_key: user + is_default: true +- fides_key: user.name + organization_fides_key: default_organization + tags: null + name: Name + description: User's real name. + parent_key: user + is_default: true +- fides_key: user.political_opinion + organization_fides_key: default_organization + tags: null + name: Political Opinion + description: Data related to the individual's political opinions. + parent_key: user + is_default: true +- fides_key: user.contact.address + organization_fides_key: default_organization + tags: null + name: Contact Data + description: Contact address data collected about a user. + parent_key: user.contact + is_default: true +- fides_key: user.contact.email + organization_fides_key: default_organization + tags: null + name: User Contact Email + description: User's contact email address. + parent_key: user.contact + is_default: true +- fides_key: user.contact.phone_number + organization_fides_key: default_organization + tags: null + name: User Contact Phone Number + description: User's phone number. + parent_key: user.contact + is_default: true +- fides_key: user.contact.address.city + organization_fides_key: default_organization + tags: null + name: User Contact City + description: User's city level address data. + parent_key: user.contact.address + is_default: true +- fides_key: user.contact.address.country + organization_fides_key: default_organization + tags: null + name: User Contact Country + description: User's country level address data. + parent_key: user.contact.address + is_default: true +- fides_key: user.contact.address.postal_code + organization_fides_key: default_organization + tags: null + name: User Contact Postal Code + description: User's postal code. + parent_key: user.contact.address + is_default: true +- fides_key: user.contact.address.state + organization_fides_key: default_organization + tags: null + name: User Contact State + description: User's state level address data. + parent_key: user.contact.address + is_default: true +- fides_key: user.contact.address.street + organization_fides_key: default_organization + tags: null + name: User Contact Street + description: User's street level address data. + parent_key: user.contact.address + is_default: true +- fides_key: user.credentials.biometric_credentials + organization_fides_key: default_organization + tags: null + name: Biometric Credentials + description: Credentials for system authentication. + parent_key: user.credentials + is_default: true +- fides_key: user.credentials.password + organization_fides_key: default_organization + tags: null + name: Password + description: Password for system authentication. + parent_key: user.credentials + is_default: true +- fides_key: user.device.cookie_id + organization_fides_key: default_organization + tags: null + name: Cookie ID + description: Cookie unique identification number. + parent_key: user.device + is_default: true +- fides_key: user.device.device_id + organization_fides_key: default_organization + tags: null + name: Device ID + description: Device unique identification number. + parent_key: user.device + is_default: true +- fides_key: user.device.ip_address + organization_fides_key: default_organization + tags: null + name: IP Address + description: Unique identifier related to device connection. + parent_key: user.device + is_default: true +- fides_key: user.financial.account_number + organization_fides_key: default_organization + tags: null + name: User Financial Account Number + description: User's account number for a payment card, bank account, or other financial + system. + parent_key: user.financial + is_default: true +- fides_key: user.government_id.drivers_license_number + organization_fides_key: default_organization + tags: null + name: Driver's License Number + description: State issued driving identification number. + parent_key: user.government_id + is_default: true +- fides_key: user.government_id.national_identification_number + organization_fides_key: default_organization + tags: null + name: National Identification Number + description: State issued personal identification number. + parent_key: user.government_id + is_default: true +- fides_key: user.government_id.passport_number + organization_fides_key: default_organization + tags: null + name: Passport Number + description: State issued passport data. + parent_key: user.government_id + is_default: true +- fides_key: user.payment.financial_account_number + organization_fides_key: default_organization + tags: null + name: Account Payment Financial Account Number + description: Financial account number for an account's payment card, bank account, + or other financial system. + parent_key: user.payment + is_default: true diff --git a/data_files/data_qualifiers.csv b/data_files/data_qualifiers.csv index eac50817..7781c20f 100644 --- a/data_files/data_qualifiers.csv +++ b/data_files/data_qualifiers.csv @@ -1,7 +1,7 @@ -privacy_key,name,parent_key,description -data_qualifier,Data Qualifier,, -aggregated,Aggregated Data,data_qualifier,Statistical data that does not contain individually identifying information but includes information about groups of individuals that renders individual identification impossible. -aggregated.anonymized,Anonymized Data,aggregated,Data where all attributes have been sufficiently altered that the individaul cannot be reidentified by this data or in combination with other datasets. -aggregated.anonymized.unlinked_pseudonymized,Unlinked Pseudonymized Data,aggregated.anonymized,"Data for which all identifiers have been substituted with unrelated values and linkages broken such that it may not be reversed, even by the party that performed the pseudonymization." -aggregated.anonymized.unlinked_pseudonymized.pseudonymized,Pseudonymized Data,aggregated.anonymized.unlinked_pseudonymized,"Data for which all identifiers have been substituted with unrelated values, rendering the individual unidentifiable and cannot be reasonably reversed other than by the party that performed the pseudonymization." -aggregated.anonymized.unlinked_pseudonymized.pseudonymized.identified,Identified Data,aggregated.anonymized.unlinked_pseudonymized.pseudonymized,Data that directly identifies an individual. \ No newline at end of file +fides_key,is_default,name,organization_fides_key,parent_key,tags,description +data_qualifier,,Data Qualifier,,,, +aggregated,True,Aggregated Data,default_organization,data_qualifier,,Statistical data that does not contain individually identifying information but includes information about groups of individuals that renders individual identification impossible. +aggregated.anonymized,True,Anonymized Data,default_organization,aggregated,,Data where all attributes have been sufficiently altered that the individaul cannot be reidentified by this data or in combination with other datasets. +aggregated.anonymized.unlinked_pseudonymized,True,Unlinked Pseudonymized Data,default_organization,aggregated.anonymized,,"Data for which all identifiers have been substituted with unrelated values and linkages broken such that it may not be reversed, even by the party that performed the pseudonymization." +aggregated.anonymized.unlinked_pseudonymized.pseudonymized,True,Pseudonymized Data,default_organization,aggregated.anonymized.unlinked_pseudonymized,,"Data for which all identifiers have been substituted with unrelated values, rendering the individual unidentifiable and cannot be reasonably reversed other than by the party that performed the pseudonymization." +aggregated.anonymized.unlinked_pseudonymized.pseudonymized.identified,True,Identified Data,default_organization,aggregated.anonymized.unlinked_pseudonymized.pseudonymized,,Data that directly identifies an individual. diff --git a/data_files/data_qualifiers.json b/data_files/data_qualifiers.json index 220e56e8..8b080d5b 100644 --- a/data_files/data_qualifiers.json +++ b/data_files/data_qualifiers.json @@ -1,33 +1,49 @@ { "data_qualifier": [ { - "privacy_key": "aggregated", + "fides_key": "aggregated", + "organization_fides_key": "default_organization", + "tags": null, "name": "Aggregated Data", - "description": "Statistical data that does not contain individually identifying information but includes information about groups of individuals that renders individual identification impossible." + "description": "Statistical data that does not contain individually identifying information but includes information about groups of individuals that renders individual identification impossible.", + "parent_key": null, + "is_default": true }, { - "privacy_key": "aggregated.anonymized", + "fides_key": "aggregated.anonymized", + "organization_fides_key": "default_organization", + "tags": null, "name": "Anonymized Data", + "description": "Data where all attributes have been sufficiently altered that the individaul cannot be reidentified by this data or in combination with other datasets.", "parent_key": "aggregated", - "description": "Data where all attributes have been sufficiently altered that the individaul cannot be reidentified by this data or in combination with other datasets." + "is_default": true }, { - "privacy_key": "aggregated.anonymized.unlinked_pseudonymized", + "fides_key": "aggregated.anonymized.unlinked_pseudonymized", + "organization_fides_key": "default_organization", + "tags": null, "name": "Unlinked Pseudonymized Data", + "description": "Data for which all identifiers have been substituted with unrelated values and linkages broken such that it may not be reversed, even by the party that performed the pseudonymization.", "parent_key": "aggregated.anonymized", - "description": "Data for which all identifiers have been substituted with unrelated values and linkages broken such that it may not be reversed, even by the party that performed the pseudonymization." + "is_default": true }, { - "privacy_key": "aggregated.anonymized.unlinked_pseudonymized.pseudonymized", + "fides_key": "aggregated.anonymized.unlinked_pseudonymized.pseudonymized", + "organization_fides_key": "default_organization", + "tags": null, "name": "Pseudonymized Data", + "description": "Data for which all identifiers have been substituted with unrelated values, rendering the individual unidentifiable and cannot be reasonably reversed other than by the party that performed the pseudonymization.", "parent_key": "aggregated.anonymized.unlinked_pseudonymized", - "description": "Data for which all identifiers have been substituted with unrelated values, rendering the individual unidentifiable and cannot be reasonably reversed other than by the party that performed the pseudonymization." + "is_default": true }, { - "privacy_key": "aggregated.anonymized.unlinked_pseudonymized.pseudonymized.identified", + "fides_key": "aggregated.anonymized.unlinked_pseudonymized.pseudonymized.identified", + "organization_fides_key": "default_organization", + "tags": null, "name": "Identified Data", + "description": "Data that directly identifies an individual.", "parent_key": "aggregated.anonymized.unlinked_pseudonymized.pseudonymized", - "description": "Data that directly identifies an individual." + "is_default": true } ] } diff --git a/data_files/data_qualifiers.yml b/data_files/data_qualifiers.yml index 2a894c02..2a95548c 100644 --- a/data_files/data_qualifiers.yml +++ b/data_files/data_qualifiers.yml @@ -1,24 +1,43 @@ data_qualifier: - - privacy_key: aggregated - name: Aggregated Data - description: Statistical data that does not contain individually identifying information but includes information about groups of individuals that renders individual identification impossible. - - - privacy_key: aggregated.anonymized - name: Anonymized Data - parent_key: aggregated - description: Data where all attributes have been sufficiently altered that the individaul cannot be reidentified by this data or in combination with other datasets. - - - privacy_key: aggregated.anonymized.unlinked_pseudonymized - name: Unlinked Pseudonymized Data - parent_key: aggregated.anonymized - description: Data for which all identifiers have been substituted with unrelated values and linkages broken such that it may not be reversed, even by the party that performed the pseudonymization. - - - privacy_key: aggregated.anonymized.unlinked_pseudonymized.pseudonymized - name: Pseudonymized Data - parent_key: aggregated.anonymized.unlinked_pseudonymized - description: Data for which all identifiers have been substituted with unrelated values, rendering the individual unidentifiable and cannot be reasonably reversed other than by the party that performed the pseudonymization. - - - privacy_key: aggregated.anonymized.unlinked_pseudonymized.pseudonymized.identified - name: Identified Data - parent_key: aggregated.anonymized.unlinked_pseudonymized.pseudonymized - description: Data that directly identifies an individual. \ No newline at end of file +- fides_key: aggregated + organization_fides_key: default_organization + tags: null + name: Aggregated Data + description: Statistical data that does not contain individually identifying information + but includes information about groups of individuals that renders individual identification + impossible. + parent_key: null + is_default: true +- fides_key: aggregated.anonymized + organization_fides_key: default_organization + tags: null + name: Anonymized Data + description: Data where all attributes have been sufficiently altered that the individaul + cannot be reidentified by this data or in combination with other datasets. + parent_key: aggregated + is_default: true +- fides_key: aggregated.anonymized.unlinked_pseudonymized + organization_fides_key: default_organization + tags: null + name: Unlinked Pseudonymized Data + description: Data for which all identifiers have been substituted with unrelated + values and linkages broken such that it may not be reversed, even by the party + that performed the pseudonymization. + parent_key: aggregated.anonymized + is_default: true +- fides_key: aggregated.anonymized.unlinked_pseudonymized.pseudonymized + organization_fides_key: default_organization + tags: null + name: Pseudonymized Data + description: Data for which all identifiers have been substituted with unrelated + values, rendering the individual unidentifiable and cannot be reasonably reversed + other than by the party that performed the pseudonymization. + parent_key: aggregated.anonymized.unlinked_pseudonymized + is_default: true +- fides_key: aggregated.anonymized.unlinked_pseudonymized.pseudonymized.identified + organization_fides_key: default_organization + tags: null + name: Identified Data + description: Data that directly identifies an individual. + parent_key: aggregated.anonymized.unlinked_pseudonymized.pseudonymized + is_default: true diff --git a/data_files/data_subjects.csv b/data_files/data_subjects.csv index de890d79..dd2eecb8 100644 --- a/data_files/data_subjects.csv +++ b/data_files/data_subjects.csv @@ -1,17 +1,17 @@ -privacy_key,name,parent_key,description -data_subject,Data Subject,, -anonymous_user,Anonymous User,data_subject,An individual that is unidentifiable to the systems. Note - This should only be applied to truly anonymous users where there is no risk of re-identification -citizen_voter,Citizen Voter,data_subject,An individual registered to voter with a state or authority. -commuter,Commuter,data_subject,An individual that is traveling or transiting in the context of location tracking. -consultant,Consultant,data_subject,An individual employed in a consultative/temporary capacity by the organization. -customer,Custom,data_subject,An individual or other organization that purchases goods or services from the organization. -employee,Employee,data_subject,An individual employed by the organization. -job_applicant,Job Applicant,data_subject,An individual applying for employment to the organization. -next_of_kin,Next of Kin,data_subject,A relative of any other individual subject where such a relationship is known. -passenger,Passenger,data_subject,An individual traveling on some means of provided transport. -patient,Patient,data_subject,An individual identified for the purposes of any medical care. -prospect,Prospect,data_subject,An individual or organization to whom an organization is selling goods or services. -shareholder,Shareholder,data_subject,An individual or organization that holds equity in the organization. -supplier_vendor,Supplier/Vendor,data_subject,An individual or organization that provides services or goods to the organization. -trainee,Trainee,data_subject,An individual undergoing training by the organization. -visitor,Visitor,data_subject,An individual visiting a location. +automated_decisions_or_profiling,fides_key,is_default,name,organization_fides_key,rights,tags,parent_key,description +,data_subject,,Data Subject,,,,, +,anonymous_user,True,Anonymous User,default_organization,,,data_subject,An individual that is unidentifiable to the systems. Note - This should only be applied to truly anonymous users where there is no risk of re-identification +,citizen_voter,True,Citizen Voter,default_organization,,,data_subject,An individual registered to voter with a state or authority. +,commuter,True,Commuter,default_organization,,,data_subject,An individual that is traveling or transiting in the context of location tracking. +,consultant,True,Consultant,default_organization,,,data_subject,An individual employed in a consultative/temporary capacity by the organization. +,customer,True,Customer,default_organization,,,data_subject,An individual or other organization that purchases goods or services from the organization. +,employee,True,Employee,default_organization,,,data_subject,An individual employed by the organization. +,job_applicant,True,Job Applicant,default_organization,,,data_subject,An individual applying for employment to the organization. +,next_of_kin,True,Next of Kin,default_organization,,,data_subject,A relative of any other individual subject where such a relationship is known. +,passenger,True,Passenger,default_organization,,,data_subject,An individual traveling on some means of provided transport. +,patient,True,Patient,default_organization,,,data_subject,An individual identified for the purposes of any medical care. +,prospect,True,Prospect,default_organization,,,data_subject,An individual or organization to whom an organization is selling goods or services. +,shareholder,True,Shareholder,default_organization,,,data_subject,An individual or organization that holds equity in the organization. +,supplier_vendor,True,Supplier/Vendor,default_organization,,,data_subject,An individual or organization that provides services or goods to the organization. +,trainee,True,Trainee,default_organization,,,data_subject,An individual undergoing training by the organization. +,visitor,True,Visitor,default_organization,,,data_subject,An individual visiting a location. diff --git a/data_files/data_subjects.json b/data_files/data_subjects.json index 75bc36fd..aeb3369f 100644 --- a/data_files/data_subjects.json +++ b/data_files/data_subjects.json @@ -1,79 +1,154 @@ { "data_subject": [ { - "privacy_key": "anonymous_user", + "fides_key": "anonymous_user", + "organization_fides_key": "default_organization", + "tags": null, "name": "Anonymous User", - "description": "An individual that is unidentifiable to the systems. Note - This should only be applied to truly anonymous users where there is no risk of re-identification" + "description": "An individual that is unidentifiable to the systems. Note - This should only be applied to truly anonymous users where there is no risk of re-identification", + "rights": null, + "automated_decisions_or_profiling": null, + "is_default": true }, { - "privacy_key": "citizen_voter", + "fides_key": "citizen_voter", + "organization_fides_key": "default_organization", + "tags": null, "name": "Citizen Voter", - "description": "An individual registered to voter with a state or authority." + "description": "An individual registered to voter with a state or authority.", + "rights": null, + "automated_decisions_or_profiling": null, + "is_default": true }, { - "privacy_key": "commuter", + "fides_key": "commuter", + "organization_fides_key": "default_organization", + "tags": null, "name": "Commuter", - "description": "An individual that is traveling or transiting in the context of location tracking." + "description": "An individual that is traveling or transiting in the context of location tracking.", + "rights": null, + "automated_decisions_or_profiling": null, + "is_default": true }, { - "privacy_key": "consultant", + "fides_key": "consultant", + "organization_fides_key": "default_organization", + "tags": null, "name": "Consultant", - "description": "An individual employed in a consultative/temporary capacity by the organization." + "description": "An individual employed in a consultative/temporary capacity by the organization.", + "rights": null, + "automated_decisions_or_profiling": null, + "is_default": true }, { - "privacy_key": "customer", - "name": "Custom", - "description": "An individual or other organization that purchases goods or services from the organization." + "fides_key": "customer", + "organization_fides_key": "default_organization", + "tags": null, + "name": "Customer", + "description": "An individual or other organization that purchases goods or services from the organization.", + "rights": null, + "automated_decisions_or_profiling": null, + "is_default": true }, { - "privacy_key": "employee", + "fides_key": "employee", + "organization_fides_key": "default_organization", + "tags": null, "name": "Employee", - "description": "An individual employed by the organization." + "description": "An individual employed by the organization.", + "rights": null, + "automated_decisions_or_profiling": null, + "is_default": true }, { - "privacy_key": "job_applicant", + "fides_key": "job_applicant", + "organization_fides_key": "default_organization", + "tags": null, "name": "Job Applicant", - "description": "An individual applying for employment to the organization." + "description": "An individual applying for employment to the organization.", + "rights": null, + "automated_decisions_or_profiling": null, + "is_default": true }, { - "privacy_key": "next_of_kin", + "fides_key": "next_of_kin", + "organization_fides_key": "default_organization", + "tags": null, "name": "Next of Kin", - "description": "A relative of any other individual subject where such a relationship is known." + "description": "A relative of any other individual subject where such a relationship is known.", + "rights": null, + "automated_decisions_or_profiling": null, + "is_default": true }, { - "privacy_key": "passenger", + "fides_key": "passenger", + "organization_fides_key": "default_organization", + "tags": null, "name": "Passenger", - "description": "An individual traveling on some means of provided transport." + "description": "An individual traveling on some means of provided transport.", + "rights": null, + "automated_decisions_or_profiling": null, + "is_default": true }, { - "privacy_key": "patient", + "fides_key": "patient", + "organization_fides_key": "default_organization", + "tags": null, "name": "Patient", - "description": "An individual identified for the purposes of any medical care." + "description": "An individual identified for the purposes of any medical care.", + "rights": null, + "automated_decisions_or_profiling": null, + "is_default": true }, { - "privacy_key": "prospect", + "fides_key": "prospect", + "organization_fides_key": "default_organization", + "tags": null, "name": "Prospect", - "description": "An individual or organization to whom an organization is selling goods or services." + "description": "An individual or organization to whom an organization is selling goods or services.", + "rights": null, + "automated_decisions_or_profiling": null, + "is_default": true }, { - "privacy_key": "shareholder", + "fides_key": "shareholder", + "organization_fides_key": "default_organization", + "tags": null, "name": "Shareholder", - "description": "An individual or organization that holds equity in the organization." + "description": "An individual or organization that holds equity in the organization.", + "rights": null, + "automated_decisions_or_profiling": null, + "is_default": true }, { - "privacy_key": "supplier_vendor", + "fides_key": "supplier_vendor", + "organization_fides_key": "default_organization", + "tags": null, "name": "Supplier/Vendor", - "description": "An individual or organization that provides services or goods to the organization." + "description": "An individual or organization that provides services or goods to the organization.", + "rights": null, + "automated_decisions_or_profiling": null, + "is_default": true }, { - "privacy_key": "trainee", + "fides_key": "trainee", + "organization_fides_key": "default_organization", + "tags": null, "name": "Trainee", - "description": "An individual undergoing training by the organization." + "description": "An individual undergoing training by the organization.", + "rights": null, + "automated_decisions_or_profiling": null, + "is_default": true }, { - "privacy_key": "visitor", + "fides_key": "visitor", + "organization_fides_key": "default_organization", + "tags": null, "name": "Visitor", - "description": "An individual visiting a location." + "description": "An individual visiting a location.", + "rights": null, + "automated_decisions_or_profiling": null, + "is_default": true } ] } diff --git a/data_files/data_subjects.yml b/data_files/data_subjects.yml index fc7069c2..fd316b56 100644 --- a/data_files/data_subjects.yml +++ b/data_files/data_subjects.yml @@ -1,60 +1,128 @@ data_subject: - - privacy_key: anonymous_user - name: Anonymous User - description: An individual that is unidentifiable to the systems. Note - This should only be applied to truly anonymous users where there is no risk of re-identification - - - privacy_key: citizen_voter - name: Citizen Voter - description: An individual registered to voter with a state or authority. - - - privacy_key: commuter - name: Commuter - description: An individual that is traveling or transiting in the context of location tracking. - - - privacy_key: consultant - name: Consultant - description: An individual employed in a consultative/temporary capacity by the organization. - - - privacy_key: customer - name: Custom - description: An individual or other organization that purchases goods or services from the organization. - - - privacy_key: employee - name: Employee - description: An individual employed by the organization. - - - privacy_key: job_applicant - name: Job Applicant - description: An individual applying for employment to the organization. - - - privacy_key: next_of_kin - name: Next of Kin - description: A relative of any other individual subject where such a relationship is known. - - - privacy_key: passenger - name: Passenger - description: An individual traveling on some means of provided transport. - - - privacy_key: patient - name: Patient - description: An individual identified for the purposes of any medical care. - - - privacy_key: prospect - name: Prospect - description: An individual or organization to whom an organization is selling goods or services. - - - privacy_key: shareholder - name: Shareholder - description: An individual or organization that holds equity in the organization. - - - privacy_key: supplier_vendor - name: Supplier/Vendor - description: An individual or organization that provides services or goods to the organization. - - - privacy_key: trainee - name: Trainee - description: An individual undergoing training by the organization. - - - privacy_key: visitor - name: Visitor - description: An individual visiting a location. +- fides_key: anonymous_user + organization_fides_key: default_organization + tags: null + name: Anonymous User + description: An individual that is unidentifiable to the systems. Note - This should + only be applied to truly anonymous users where there is no risk of re-identification + rights: null + automated_decisions_or_profiling: null + is_default: true +- fides_key: citizen_voter + organization_fides_key: default_organization + tags: null + name: Citizen Voter + description: An individual registered to voter with a state or authority. + rights: null + automated_decisions_or_profiling: null + is_default: true +- fides_key: commuter + organization_fides_key: default_organization + tags: null + name: Commuter + description: An individual that is traveling or transiting in the context of location + tracking. + rights: null + automated_decisions_or_profiling: null + is_default: true +- fides_key: consultant + organization_fides_key: default_organization + tags: null + name: Consultant + description: An individual employed in a consultative/temporary capacity by the + organization. + rights: null + automated_decisions_or_profiling: null + is_default: true +- fides_key: customer + organization_fides_key: default_organization + tags: null + name: Customer + description: An individual or other organization that purchases goods or services + from the organization. + rights: null + automated_decisions_or_profiling: null + is_default: true +- fides_key: employee + organization_fides_key: default_organization + tags: null + name: Employee + description: An individual employed by the organization. + rights: null + automated_decisions_or_profiling: null + is_default: true +- fides_key: job_applicant + organization_fides_key: default_organization + tags: null + name: Job Applicant + description: An individual applying for employment to the organization. + rights: null + automated_decisions_or_profiling: null + is_default: true +- fides_key: next_of_kin + organization_fides_key: default_organization + tags: null + name: Next of Kin + description: A relative of any other individual subject where such a relationship + is known. + rights: null + automated_decisions_or_profiling: null + is_default: true +- fides_key: passenger + organization_fides_key: default_organization + tags: null + name: Passenger + description: An individual traveling on some means of provided transport. + rights: null + automated_decisions_or_profiling: null + is_default: true +- fides_key: patient + organization_fides_key: default_organization + tags: null + name: Patient + description: An individual identified for the purposes of any medical care. + rights: null + automated_decisions_or_profiling: null + is_default: true +- fides_key: prospect + organization_fides_key: default_organization + tags: null + name: Prospect + description: An individual or organization to whom an organization is selling goods + or services. + rights: null + automated_decisions_or_profiling: null + is_default: true +- fides_key: shareholder + organization_fides_key: default_organization + tags: null + name: Shareholder + description: An individual or organization that holds equity in the organization. + rights: null + automated_decisions_or_profiling: null + is_default: true +- fides_key: supplier_vendor + organization_fides_key: default_organization + tags: null + name: Supplier/Vendor + description: An individual or organization that provides services or goods to the + organization. + rights: null + automated_decisions_or_profiling: null + is_default: true +- fides_key: trainee + organization_fides_key: default_organization + tags: null + name: Trainee + description: An individual undergoing training by the organization. + rights: null + automated_decisions_or_profiling: null + is_default: true +- fides_key: visitor + organization_fides_key: default_organization + tags: null + name: Visitor + description: An individual visiting a location. + rights: null + automated_decisions_or_profiling: null + is_default: true diff --git a/data_files/data_uses.csv b/data_files/data_uses.csv index ade10160..d795f67d 100644 --- a/data_files/data_uses.csv +++ b/data_files/data_uses.csv @@ -1,25 +1,47 @@ -fides_key,name,parent_key,description -data_use,Data Use,, -provide,Provide the capability,data_use,"Provide, give, or make available the product, service, application or system." -provide.service,Service,provide,"The source service, product, service or application being provided to the user." -provide.service.operations,System Operations,provide.service,Use of specified data categories to operate and protect the system in order to provide the service. -provide.service.operations.support,Operations Support,provide.service.operations,Use of specified data categories to provide support for operation and protection of the system in order to provide the service. -provide.service.operations.support.optimization,Support Optimization,provide.service.operations.support,Use of specified data categories to optimize and improve support operations in order to provide the service. -provide.service.upgrades,Offer Upgrades,provide.service,Offer upgrades or upsales such as increased capacity for the service based on monitoring of service usage. -improve,Improve the capability,data_use,"Improve the product, service, application or system." -improve.system,System,improve,"The source system, product, service or application being improved." -personalize,Personalize the capability,data_use,"Personalize the product, service, application or system." -personalize.system,System,personalize,"The source system, product, service or application being personalized." -advertising,"Advertising, Marketing or Promotion",data_use,The promotion of products or services targeted to users based on the the processing of user provided data in the system. -advertising.first_party,First Party Advertising,advertising,The promotion of products or services targeting users based on processing of derviced data from prior use of the system. -advertising.third_party,Third Party Advertising,advertising,The promotion of products or services targeting users based on processing of specific categories of data acquired from third party sources. -advertising.first_party.contextual,First Party Contextual Advertising,advertising.first_party,The promotion of products or services targeted to users based on the processing of derived data from the users prior use of the services. -advertising.first_party.personalized,First Party Personalized Advertising,advertising.first_party,The targeting and changing of promotional content based on processing of specific data categories from the user. -advertising.third_party.personalized,Third Party Personalized Advertising,advertising.third_party,The targeting and changing of promotional content based on processing of specific categories of user data acquired from third party sources. -third_party_sharing,Third Party Sharing,data_use,The transfer of specified data categories to third parties outside of the system/application's scope. -third_party_sharing.payment_processing,Sharing for Processing Payments,third_party_sharing,Sharing of specified data categories with a third party for payment processing. -third_party_sharing.personalized_advertising,Sharing for Personalized Advertising,third_party_sharing,Sharing of specified data categories for the purpose of marketing/advertising/promotion. -third_party_sharing.fraud_detection,Sharing for Fraud Detection,third_party_sharing,Sharing of specified data categories with a third party fo fraud prevention/detection. -third_party_sharing.legal_obligation,Sharing for Legal Obligation,third_party_sharing,"Sharing of data for legal obligations, including contracts, applicable laws or regulations." -collect,Collect,data_use,Collecting and storing data in order to use it for another purpose such as data training for ML. -train_ai_system,Train AI System,data_use,"Training an AI system. Please note when this data use is specified, the method and degree to which a user may be directly identified in the resulting AI system should be appended." +fides_key,is_default,legal_basis,legitimate_interest,legitimate_interest_impact_assessment,name,organization_fides_key,parent_key,recipients,special_category,tags,description +data_use,,,,,Data Use,,,,,, +analytics,True,,False,,Analytics,default_organization,data_use,,,,"Provides analytics for activities such as system and advertising performance reporting, insights and fraud detection." +analytics.reporting,True,,False,,Analytics for Reporting,default_organization,analytics,,,,Provides analytics for general reporting such as system and advertising performance. +analytics.reporting.ad_performance,True,,False,,Analytics for Advertising Performance,default_organization,analytics.reporting,,,,Provides analytics for reporting of advertising performance. +analytics.reporting.campaign_insights,True,,False,,Analytics for Insights,default_organization,analytics.reporting,,,,Provides analytics for reporting of campaign insights related to advertising and promotion activities. +analytics.reporting.system,True,,False,,Analytics for System Activity,default_organization,analytics.reporting,,,,Provides analytics for reporting on system activity. +analytics.reporting.system.performance,True,,False,,Analytics for System Performance,default_organization,analytics.reporting.system,,,,Provides analytics for reporting on system performance. +collect,True,,False,,Collect,default_organization,data_use,,,,Collects or stores data in order to use it for another purpose which has not yet been expressly defined. +employment,True,,False,,Employment,default_organization,data_use,,,,Processes data for the purpose of recruitment or employment and human resources (HR) related activities. +employment.recruitment,True,,False,,Employment Recruitment,default_organization,employment,,,,Processes data of prospective employees for the purpose of recruitment. +essential,True,,False,,Essential,default_organization,data_use,,,,"Operates the service or product, including legal obligations, support and basic system operations." +essential.fraud_detection,True,,False,,Essential Fraud Detection,default_organization,essential,,,,"Detects possible fraud or misuse of the product, service, application or system." +essential.legal_obligation,True,,False,,Essential Legal Obligation,default_organization,essential,,,,Provides service to meet a legal or compliance obligation such as consent management. +essential.service,True,,False,,Essential for Service,default_organization,essential,,,,"Provides the essential product, service, application or system, without which the product/service would not be possible." +essential.service.authentication,True,,False,,Essential Service Authentication,default_organization,essential.service,,,,"Authenticate users to the product, service, application or system." +essential.service.notifications,True,,False,,Essential Service Notifications,default_organization,essential.service,,,,"Sends notifications about the product, service, application or system." +essential.service.operations,True,,False,,Essential for Service Operations,default_organization,essential.service,,,,"Ensures the operation of the product, service, application or system." +essential.service.payment_processing,True,,False,,Essential for Service Payment Processing,default_organization,essential.service,,,,"Processes payments for the product, service, application or system." +essential.service.upgrades,True,,False,,Essential for Service Upgrades,default_organization,essential.service,,,,Provides timely system upgrade information options. +essential.service.notifications.email,True,,False,,Essential Email Service Notifications,default_organization,essential.service.notifications,,,,"Sends email notifications about the product, service, application or system." +essential.service.notifications.sms,True,,False,,Essential SMS Service Notifications,default_organization,essential.service.notifications,,,,"Sends SMS notifications about the product, service, application or system." +essential.service.operations.support,True,,False,,Essential for Serivce Operations Support,default_organization,essential.service.operations,,,,"Provides support for the product, service, application or system." +essential.service.operations.support.optimization,True,,False,,Essential for Serivce Support Optimization,default_organization,essential.service.operations.support,,,,"Optimizes and improves support for the product, service, application or system." +finance,True,,False,,Finance,default_organization,data_use,,,,Enables finance and accounting activities such as audits and tax reporting. +improve,True,,False,,"Improves the product, service, application or system.",default_organization,data_use,,,,"Improve the product, service, application or system." +improve.system,True,,False,,System,default_organization,improve,,,,"Improves the specific product, service, application or system." +marketing,True,,False,,Marketing,default_organization,data_use,,,,"Enables marketing, promotion, advertising and sales activities for the product, service, application or system." +marketing.advertising,True,,False,,"Advertising, Marketing or Promotion",default_organization,marketing,,,,"Advertises or promotes the product, service, application or system and associated services." +marketing.communications,True,,False,,Marketing Communications,default_organization,marketing,,,,"Uses combined channels to message and market to a customer, user or prospect." +marketing.advertising.first_party,True,,False,,First Party Advertising,default_organization,marketing.advertising,,,,Serves advertisements based on first party data collected or derived about the user. +marketing.advertising.frequency_capping,True,,False,,Frequency Capping,default_organization,marketing.advertising,,,,Restricts the number of times a specific advertisement is shown to an individual. +marketing.advertising.negative_targeting,True,,False,,Negative Targeting,default_organization,marketing.advertising,,,,Enforces rules used to ensure a certain audience or group is not targeted by advertising. +marketing.advertising.third_party,True,,False,,Third Party Advertising,default_organization,marketing.advertising,,,,Serves advertisements based on data within the system or joined with data provided by 3rd parties. +marketing.advertising.first_party.contextual,True,,False,,First Party Contextual Advertising,default_organization,marketing.advertising.first_party,,,,Serves advertisements based on current content being viewed by the user of the system or service. +marketing.advertising.first_party.targeted,True,,False,,First Party Personalized Advertising,default_organization,marketing.advertising.first_party,,,,Targets advertisements based on data collected or derived about the user from use of the system. +marketing.advertising.third_party.targeted,True,,False,,Third Party Targeted Advertising,default_organization,marketing.advertising.third_party,,,,Targets advertisements based on data within the system or joined with data provided by 3rd parties. +marketing.communications.email,True,,False,,Marketing Email Communications,default_organization,marketing.communications,,,,Sends email marketing communications. +marketing.communications.sms,True,,False,,Marketing SMS Communications,default_organization,marketing.communications,,,,Sends SMS marketing communications. +operations,True,,False,,Operations,default_organization,data_use,,,,Supports business processes necessary to the organization's operation. +personalize,True,,False,,Personalize,default_organization,data_use,,,,"Personalizes the product, service, application or system." +personalize.content,True,,False,,Content Personalization,default_organization,personalize,,,,"Personalizes the content of the product, service, application or system." +personalize.system,True,,False,,System Personalization,default_organization,personalize,,,,"Personalizes the product, service, application or system." +sales,True,,False,,Sales,default_organization,data_use,,,,Supports sales activities such as communications and outreach. +third_party_sharing,True,,False,,Third Party Sharing,default_organization,data_use,,,,Transfers data to third parties outside of the system or service's scope. +third_party_sharing.legal_obligation,True,,False,,Sharing for Legal Obligation,default_organization,third_party_sharing,,,,"Shares data for legal obligations, including contracts, applicable laws or regulations." +train_ai_system,True,,False,,Train AI System,default_organization,data_use,,,,Trains an AI system or data model for machine learning. diff --git a/data_files/data_uses.json b/data_files/data_uses.json index e5f6d2c0..2d9f5ab1 100644 --- a/data_files/data_uses.json +++ b/data_files/data_uses.json @@ -1,135 +1,634 @@ { "data_use": [ { - "privacy_key": "provide", - "name": "Provide the capability", - "description": "Provide, give, or make available the product, service, application or system." + "fides_key": "analytics", + "organization_fides_key": "default_organization", + "tags": null, + "name": "Analytics", + "description": "Provides analytics for activities such as system and advertising performance reporting, insights and fraud detection.", + "parent_key": null, + "legal_basis": null, + "special_category": null, + "recipients": null, + "legitimate_interest": false, + "legitimate_interest_impact_assessment": null, + "is_default": true }, { - "privacy_key": "provide.service", - "name": "System", - "parent_key": "provide", - "description": "The source service, product, system or application being provided to the user." + "fides_key": "analytics.reporting", + "organization_fides_key": "default_organization", + "tags": null, + "name": "Analytics for Reporting", + "description": "Provides analytics for general reporting such as system and advertising performance.", + "parent_key": "analytics", + "legal_basis": null, + "special_category": null, + "recipients": null, + "legitimate_interest": false, + "legitimate_interest_impact_assessment": null, + "is_default": true }, { - "privacy_key": "provide.service.operations", - "name": "System Operations", - "parent_key": "provide.service", - "description": "Use of specified data categories to operate and protect the system in order to provide the service." + "fides_key": "analytics.reporting.ad_performance", + "organization_fides_key": "default_organization", + "tags": null, + "name": "Analytics for Advertising Performance", + "description": "Provides analytics for reporting of advertising performance.", + "parent_key": "analytics.reporting", + "legal_basis": null, + "special_category": null, + "recipients": null, + "legitimate_interest": false, + "legitimate_interest_impact_assessment": null, + "is_default": true }, { - "privacy_key": "provide.service.operations.support", - "name": "Operations Support", - "parent_key": "provide.service.operations", - "description": "Use of specified data categories to provide support for operation and protection of the system in order to provide the service." + "fides_key": "analytics.reporting.campaign_insights", + "organization_fides_key": "default_organization", + "tags": null, + "name": "Analytics for Insights", + "description": "Provides analytics for reporting of campaign insights related to advertising and promotion activities.", + "parent_key": "analytics.reporting", + "legal_basis": null, + "special_category": null, + "recipients": null, + "legitimate_interest": false, + "legitimate_interest_impact_assessment": null, + "is_default": true }, { - "privacy_key": "provide.service.operations.support.optimization", - "name": "Support Optimization", - "parent_key": "provide.service.operations.support", - "description": "Use of specified data categories to optimize and improve support operations in order to provide the service." + "fides_key": "analytics.reporting.system", + "organization_fides_key": "default_organization", + "tags": null, + "name": "Analytics for System Activity", + "description": "Provides analytics for reporting on system activity.", + "parent_key": "analytics.reporting", + "legal_basis": null, + "special_category": null, + "recipients": null, + "legitimate_interest": false, + "legitimate_interest_impact_assessment": null, + "is_default": true }, { - "privacy_key": "provide.service.upgrades", - "name": "Offer Upgrades", - "parent_key": "provide.service", - "description": "Offer upgrades or upsales such as increased capacity for the service based on monitoring of service usage." + "fides_key": "analytics.reporting.system.performance", + "organization_fides_key": "default_organization", + "tags": null, + "name": "Analytics for System Performance", + "description": "Provides analytics for reporting on system performance.", + "parent_key": "analytics.reporting.system", + "legal_basis": null, + "special_category": null, + "recipients": null, + "legitimate_interest": false, + "legitimate_interest_impact_assessment": null, + "is_default": true }, { - "privacy_key": "improve", - "name": "Improve the capability", - "description": "Improve the product, service, application or system." + "fides_key": "collect", + "organization_fides_key": "default_organization", + "tags": null, + "name": "Collect", + "description": "Collects or stores data in order to use it for another purpose which has not yet been expressly defined.", + "parent_key": null, + "legal_basis": null, + "special_category": null, + "recipients": null, + "legitimate_interest": false, + "legitimate_interest_impact_assessment": null, + "is_default": true }, { - "privacy_key": "improve.system", - "name": "System", - "parent_key": "improve", - "description": "The source system, product, service or application being improved." + "fides_key": "employment", + "organization_fides_key": "default_organization", + "tags": null, + "name": "Employment", + "description": "Processes data for the purpose of recruitment or employment and human resources (HR) related activities.", + "parent_key": null, + "legal_basis": null, + "special_category": null, + "recipients": null, + "legitimate_interest": false, + "legitimate_interest_impact_assessment": null, + "is_default": true + }, + { + "fides_key": "employment.recruitment", + "organization_fides_key": "default_organization", + "tags": null, + "name": "Employment Recruitment", + "description": "Processes data of prospective employees for the purpose of recruitment.", + "parent_key": "employment", + "legal_basis": null, + "special_category": null, + "recipients": null, + "legitimate_interest": false, + "legitimate_interest_impact_assessment": null, + "is_default": true + }, + { + "fides_key": "essential", + "organization_fides_key": "default_organization", + "tags": null, + "name": "Essential", + "description": "Operates the service or product, including legal obligations, support and basic system operations.", + "parent_key": null, + "legal_basis": null, + "special_category": null, + "recipients": null, + "legitimate_interest": false, + "legitimate_interest_impact_assessment": null, + "is_default": true + }, + { + "fides_key": "essential.fraud_detection", + "organization_fides_key": "default_organization", + "tags": null, + "name": "Essential Fraud Detection", + "description": "Detects possible fraud or misuse of the product, service, application or system.", + "parent_key": "essential", + "legal_basis": null, + "special_category": null, + "recipients": null, + "legitimate_interest": false, + "legitimate_interest_impact_assessment": null, + "is_default": true + }, + { + "fides_key": "essential.legal_obligation", + "organization_fides_key": "default_organization", + "tags": null, + "name": "Essential Legal Obligation", + "description": "Provides service to meet a legal or compliance obligation such as consent management.", + "parent_key": "essential", + "legal_basis": null, + "special_category": null, + "recipients": null, + "legitimate_interest": false, + "legitimate_interest_impact_assessment": null, + "is_default": true + }, + { + "fides_key": "essential.service", + "organization_fides_key": "default_organization", + "tags": null, + "name": "Essential for Service", + "description": "Provides the essential product, service, application or system, without which the product/service would not be possible.", + "parent_key": "essential", + "legal_basis": null, + "special_category": null, + "recipients": null, + "legitimate_interest": false, + "legitimate_interest_impact_assessment": null, + "is_default": true + }, + { + "fides_key": "essential.service.authentication", + "organization_fides_key": "default_organization", + "tags": null, + "name": "Essential Service Authentication", + "description": "Authenticate users to the product, service, application or system.", + "parent_key": "essential.service", + "legal_basis": null, + "special_category": null, + "recipients": null, + "legitimate_interest": false, + "legitimate_interest_impact_assessment": null, + "is_default": true + }, + { + "fides_key": "essential.service.notifications", + "organization_fides_key": "default_organization", + "tags": null, + "name": "Essential Service Notifications", + "description": "Sends notifications about the product, service, application or system.", + "parent_key": "essential.service", + "legal_basis": null, + "special_category": null, + "recipients": null, + "legitimate_interest": false, + "legitimate_interest_impact_assessment": null, + "is_default": true + }, + { + "fides_key": "essential.service.operations", + "organization_fides_key": "default_organization", + "tags": null, + "name": "Essential for Service Operations", + "description": "Ensures the operation of the product, service, application or system.", + "parent_key": "essential.service", + "legal_basis": null, + "special_category": null, + "recipients": null, + "legitimate_interest": false, + "legitimate_interest_impact_assessment": null, + "is_default": true + }, + { + "fides_key": "essential.service.payment_processing", + "organization_fides_key": "default_organization", + "tags": null, + "name": "Essential for Service Payment Processing", + "description": "Processes payments for the product, service, application or system.", + "parent_key": "essential.service", + "legal_basis": null, + "special_category": null, + "recipients": null, + "legitimate_interest": false, + "legitimate_interest_impact_assessment": null, + "is_default": true + }, + { + "fides_key": "essential.service.upgrades", + "organization_fides_key": "default_organization", + "tags": null, + "name": "Essential for Service Upgrades", + "description": "Provides timely system upgrade information options.", + "parent_key": "essential.service", + "legal_basis": null, + "special_category": null, + "recipients": null, + "legitimate_interest": false, + "legitimate_interest_impact_assessment": null, + "is_default": true + }, + { + "fides_key": "essential.service.notifications.email", + "organization_fides_key": "default_organization", + "tags": null, + "name": "Essential Email Service Notifications", + "description": "Sends email notifications about the product, service, application or system.", + "parent_key": "essential.service.notifications", + "legal_basis": null, + "special_category": null, + "recipients": null, + "legitimate_interest": false, + "legitimate_interest_impact_assessment": null, + "is_default": true + }, + { + "fides_key": "essential.service.notifications.sms", + "organization_fides_key": "default_organization", + "tags": null, + "name": "Essential SMS Service Notifications", + "description": "Sends SMS notifications about the product, service, application or system.", + "parent_key": "essential.service.notifications", + "legal_basis": null, + "special_category": null, + "recipients": null, + "legitimate_interest": false, + "legitimate_interest_impact_assessment": null, + "is_default": true + }, + { + "fides_key": "essential.service.operations.support", + "organization_fides_key": "default_organization", + "tags": null, + "name": "Essential for Serivce Operations Support", + "description": "Provides support for the product, service, application or system.", + "parent_key": "essential.service.operations", + "legal_basis": null, + "special_category": null, + "recipients": null, + "legitimate_interest": false, + "legitimate_interest_impact_assessment": null, + "is_default": true + }, + { + "fides_key": "essential.service.operations.support.optimization", + "organization_fides_key": "default_organization", + "tags": null, + "name": "Essential for Serivce Support Optimization", + "description": "Optimizes and improves support for the product, service, application or system.", + "parent_key": "essential.service.operations.support", + "legal_basis": null, + "special_category": null, + "recipients": null, + "legitimate_interest": false, + "legitimate_interest_impact_assessment": null, + "is_default": true + }, + { + "fides_key": "finance", + "organization_fides_key": "default_organization", + "tags": null, + "name": "Finance", + "description": "Enables finance and accounting activities such as audits and tax reporting.", + "parent_key": null, + "legal_basis": null, + "special_category": null, + "recipients": null, + "legitimate_interest": false, + "legitimate_interest_impact_assessment": null, + "is_default": true }, { - "privacy_key": "personalize", - "name": "Personalize the capability", - "description": "Personalize the product, service, application or system." + "fides_key": "improve", + "organization_fides_key": "default_organization", + "tags": null, + "name": "Improves the product, service, application or system.", + "description": "Improve the product, service, application or system.", + "parent_key": null, + "legal_basis": null, + "special_category": null, + "recipients": null, + "legitimate_interest": false, + "legitimate_interest_impact_assessment": null, + "is_default": true }, { - "privacy_key": "personalize.system", + "fides_key": "improve.system", + "organization_fides_key": "default_organization", + "tags": null, "name": "System", - "parent_key": "personalize", - "description": "The source system, product, service or application being personalized." + "description": "Improves the specific product, service, application or system.", + "parent_key": "improve", + "legal_basis": null, + "special_category": null, + "recipients": null, + "legitimate_interest": false, + "legitimate_interest_impact_assessment": null, + "is_default": true + }, + { + "fides_key": "marketing", + "organization_fides_key": "default_organization", + "tags": null, + "name": "Marketing", + "description": "Enables marketing, promotion, advertising and sales activities for the product, service, application or system.", + "parent_key": null, + "legal_basis": null, + "special_category": null, + "recipients": null, + "legitimate_interest": false, + "legitimate_interest_impact_assessment": null, + "is_default": true }, { - "privacy_key": "advertising", + "fides_key": "marketing.advertising", + "organization_fides_key": "default_organization", + "tags": null, "name": "Advertising, Marketing or Promotion", - "description": "The promotion of products or services targeted to users based on the the processing of user provided data in the system." + "description": "Advertises or promotes the product, service, application or system and associated services.", + "parent_key": "marketing", + "legal_basis": null, + "special_category": null, + "recipients": null, + "legitimate_interest": false, + "legitimate_interest_impact_assessment": null, + "is_default": true + }, + { + "fides_key": "marketing.communications", + "organization_fides_key": "default_organization", + "tags": null, + "name": "Marketing Communications", + "description": "Uses combined channels to message and market to a customer, user or prospect.", + "parent_key": "marketing", + "legal_basis": null, + "special_category": null, + "recipients": null, + "legitimate_interest": false, + "legitimate_interest_impact_assessment": null, + "is_default": true }, { - "privacy_key": "advertising.first_party", + "fides_key": "marketing.advertising.first_party", + "organization_fides_key": "default_organization", + "tags": null, "name": "First Party Advertising", - "parent_key": "advertising", - "description": "The promotion of products or services targeting users based on processing of derviced data from prior use of the system." + "description": "Serves advertisements based on first party data collected or derived about the user.", + "parent_key": "marketing.advertising", + "legal_basis": null, + "special_category": null, + "recipients": null, + "legitimate_interest": false, + "legitimate_interest_impact_assessment": null, + "is_default": true + }, + { + "fides_key": "marketing.advertising.frequency_capping", + "organization_fides_key": "default_organization", + "tags": null, + "name": "Frequency Capping", + "description": "Restricts the number of times a specific advertisement is shown to an individual.", + "parent_key": "marketing.advertising", + "legal_basis": null, + "special_category": null, + "recipients": null, + "legitimate_interest": false, + "legitimate_interest_impact_assessment": null, + "is_default": true + }, + { + "fides_key": "marketing.advertising.negative_targeting", + "organization_fides_key": "default_organization", + "tags": null, + "name": "Negative Targeting", + "description": "Enforces rules used to ensure a certain audience or group is not targeted by advertising.", + "parent_key": "marketing.advertising", + "legal_basis": null, + "special_category": null, + "recipients": null, + "legitimate_interest": false, + "legitimate_interest_impact_assessment": null, + "is_default": true }, { - "privacy_key": "advertising.third_party", + "fides_key": "marketing.advertising.third_party", + "organization_fides_key": "default_organization", + "tags": null, "name": "Third Party Advertising", - "parent_key": "advertising", - "description": "The promotion of products or services targeting users based on processing of specific categories of data acquired from third party sources." + "description": "Serves advertisements based on data within the system or joined with data provided by 3rd parties.", + "parent_key": "marketing.advertising", + "legal_basis": null, + "special_category": null, + "recipients": null, + "legitimate_interest": false, + "legitimate_interest_impact_assessment": null, + "is_default": true }, { - "privacy_key": "advertising.first_party.contextual", + "fides_key": "marketing.advertising.first_party.contextual", + "organization_fides_key": "default_organization", + "tags": null, "name": "First Party Contextual Advertising", - "parent_key": "advertising.first_party", - "description": "The promotion of products or services targeted to users based on the processing of derived data from the users prior use of the services." + "description": "Serves advertisements based on current content being viewed by the user of the system or service.", + "parent_key": "marketing.advertising.first_party", + "legal_basis": null, + "special_category": null, + "recipients": null, + "legitimate_interest": false, + "legitimate_interest_impact_assessment": null, + "is_default": true }, { - "privacy_key": "advertising.first_party.personalized", + "fides_key": "marketing.advertising.first_party.targeted", + "organization_fides_key": "default_organization", + "tags": null, "name": "First Party Personalized Advertising", - "parent_key": "advertising.first_party", - "description": "The targeting and changing of promotional content based on processing of specific data categories from the user." + "description": "Targets advertisements based on data collected or derived about the user from use of the system.", + "parent_key": "marketing.advertising.first_party", + "legal_basis": null, + "special_category": null, + "recipients": null, + "legitimate_interest": false, + "legitimate_interest_impact_assessment": null, + "is_default": true }, { - "privacy_key": "advertising.third_party.personalized", - "name": "Third Party Personalized Advertising", - "parent_key": "advertising.third_party", - "description": "The targeting and changing of promotional content based on processing of specific categories of user data acquired from third party sources." + "fides_key": "marketing.advertising.third_party.targeted", + "organization_fides_key": "default_organization", + "tags": null, + "name": "Third Party Targeted Advertising", + "description": "Targets advertisements based on data within the system or joined with data provided by 3rd parties.", + "parent_key": "marketing.advertising.third_party", + "legal_basis": null, + "special_category": null, + "recipients": null, + "legitimate_interest": false, + "legitimate_interest_impact_assessment": null, + "is_default": true }, { - "privacy_key": "third_party_sharing", - "name": "Third Party Sharing", - "description": "The transfer of specified data categories to third parties outside of the system/application's scope." + "fides_key": "marketing.communications.email", + "organization_fides_key": "default_organization", + "tags": null, + "name": "Marketing Email Communications", + "description": "Sends email marketing communications.", + "parent_key": "marketing.communications", + "legal_basis": null, + "special_category": null, + "recipients": null, + "legitimate_interest": false, + "legitimate_interest_impact_assessment": null, + "is_default": true }, { - "privacy_key": "third_party_sharing.payment_processing", - "name": "Sharing for Processing Payments", - "parent_key": "third_party_sharing", - "description": "Sharing of specified data categories with a third party for payment processing." + "fides_key": "marketing.communications.sms", + "organization_fides_key": "default_organization", + "tags": null, + "name": "Marketing SMS Communications", + "description": "Sends SMS marketing communications.", + "parent_key": "marketing.communications", + "legal_basis": null, + "special_category": null, + "recipients": null, + "legitimate_interest": false, + "legitimate_interest_impact_assessment": null, + "is_default": true }, { - "privacy_key": "third_party_sharing.personalized_advertising", - "name": "Sharing for Personalized Advertising", - "parent_key": "third_party_sharing", - "description": "Sharing of specified data categories for the purpose of marketing/advertising/promotion." + "fides_key": "operations", + "organization_fides_key": "default_organization", + "tags": null, + "name": "Operations", + "description": "Supports business processes necessary to the organization's operation.", + "parent_key": null, + "legal_basis": null, + "special_category": null, + "recipients": null, + "legitimate_interest": false, + "legitimate_interest_impact_assessment": null, + "is_default": true }, { - "privacy_key": "third_party_sharing.fraud_detection", - "name": "Sharing for Fraud Detection", - "parent_key": "third_party_sharing", - "description": "Sharing of specified data categories with a third party fo fraud prevention/detection." + "fides_key": "personalize", + "organization_fides_key": "default_organization", + "tags": null, + "name": "Personalize", + "description": "Personalizes the product, service, application or system.", + "parent_key": null, + "legal_basis": null, + "special_category": null, + "recipients": null, + "legitimate_interest": false, + "legitimate_interest_impact_assessment": null, + "is_default": true }, { - "privacy_key": "third_party_sharing.legal_obligation", - "name": "Sharing for Legal Obligation", - "parent_key": "third_party_sharing", - "description": "Sharing of data for legal obligations, including contracts, applicable laws or regulations." + "fides_key": "personalize.content", + "organization_fides_key": "default_organization", + "tags": null, + "name": "Content Personalization", + "description": "Personalizes the content of the product, service, application or system.", + "parent_key": "personalize", + "legal_basis": null, + "special_category": null, + "recipients": null, + "legitimate_interest": false, + "legitimate_interest_impact_assessment": null, + "is_default": true }, { - "privacy_key": "collect", - "name": "Collect", - "description": "Collecting and storing data in order to use it for another purpose such as data training for ML." + "fides_key": "personalize.system", + "organization_fides_key": "default_organization", + "tags": null, + "name": "System Personalization", + "description": "Personalizes the product, service, application or system.", + "parent_key": "personalize", + "legal_basis": null, + "special_category": null, + "recipients": null, + "legitimate_interest": false, + "legitimate_interest_impact_assessment": null, + "is_default": true + }, + { + "fides_key": "sales", + "organization_fides_key": "default_organization", + "tags": null, + "name": "Sales", + "description": "Supports sales activities such as communications and outreach.", + "parent_key": null, + "legal_basis": null, + "special_category": null, + "recipients": null, + "legitimate_interest": false, + "legitimate_interest_impact_assessment": null, + "is_default": true + }, + { + "fides_key": "third_party_sharing", + "organization_fides_key": "default_organization", + "tags": null, + "name": "Third Party Sharing", + "description": "Transfers data to third parties outside of the system or service's scope.", + "parent_key": null, + "legal_basis": null, + "special_category": null, + "recipients": null, + "legitimate_interest": false, + "legitimate_interest_impact_assessment": null, + "is_default": true + }, + { + "fides_key": "third_party_sharing.legal_obligation", + "organization_fides_key": "default_organization", + "tags": null, + "name": "Sharing for Legal Obligation", + "description": "Shares data for legal obligations, including contracts, applicable laws or regulations.", + "parent_key": "third_party_sharing", + "legal_basis": null, + "special_category": null, + "recipients": null, + "legitimate_interest": false, + "legitimate_interest_impact_assessment": null, + "is_default": true }, { - "privacy_key": "train_ai_system", + "fides_key": "train_ai_system", + "organization_fides_key": "default_organization", + "tags": null, "name": "Train AI System", - "description": "Training an AI system. Please note when this data use is specified, the method and degree to which a user may be directly identified in the resulting AI system should be appended." + "description": "Trains an AI system or data model for machine learning.", + "parent_key": null, + "legal_basis": null, + "special_category": null, + "recipients": null, + "legitimate_interest": false, + "legitimate_interest_impact_assessment": null, + "is_default": true } ] } diff --git a/data_files/data_uses.yml b/data_files/data_uses.yml index 00d8f98d..2940d5f7 100644 --- a/data_files/data_uses.yml +++ b/data_files/data_uses.yml @@ -1,117 +1,565 @@ data_use: - # Provided Data - - privacy_key: provide - name: Provide the capability - description: Provide, give, or make available the product, service, application or system. - - - privacy_key: provide.service - name: System - parent_key: provide - description: The source service, product, system or application being provided to the user. - - - privacy_key: provide.service.operations - name: System Operations - parent_key: provide.service - description: Use of specified data categories to operate and protect the system in order to provide the service. - - - privacy_key: provide.service.operations.support - name: Operations Support - parent_key: provide.service.operations - description: Use of specified data categories to provide support for operation and protection of the system in order to provide the service. - - - privacy_key: provide.service.operations.support.optimization - name: Support Optimization - parent_key: provide.service.operations.support - description: Use of specified data categories to optimize and improve support operations in order to provide the service. - - - privacy_key: provide.service.upgrades - name: Offer Upgrades - parent_key: provide.service - description: Offer upgrades or upsales such as increased capacity for the service based on monitoring of service usage. - - # Improvement Data - - privacy_key: improve - name: Improve the capability - description: Improve the product, service, application or system. - - - privacy_key: improve.system - name: System - parent_key: improve - description: The source system, product, service or application being improved. - - # Personalize Data - - privacy_key: personalize - name: Personalize the capability - description: Personalize the product, service, application or system. - - - privacy_key: personalize.system - name: System - parent_key: personalize - description: The source system, product, service or application being personalized. - - # Marketing, Advertising or Promotion Data - - privacy_key: advertising - name: Advertising, Marketing or Promotion - description: The promotion of products or services targeted to users based on the the processing of user provided data in the system. - - - privacy_key: advertising.first_party - name: First Party Advertising - parent_key: advertising - description: The promotion of products or services targeting users based on processing of derviced data from prior use of the system. - - - privacy_key: advertising.third_party - name: Third Party Advertising - parent_key: advertising - description: The promotion of products or services targeting users based on processing of specific categories of data acquired from third party sources. - - # Marketing, Advertising or Promotion -> First Party Advertising - - privacy_key: advertising.first_party.contextual - name: First Party Contextual Advertising - parent_key: advertising.first_party - description: The promotion of products or services targeted to users based on the processing of derived data from the users prior use of the services. - - - privacy_key: advertising.first_party.personalized - name: First Party Personalized Advertising - parent_key: advertising.first_party - description: The targeting and changing of promotional content based on processing of specific data categories from the user. - - # Marketing, Advertising or Promotion -> Third Party Advertising - - privacy_key: advertising.third_party.personalized - name: Third Party Personalized Advertising - parent_key: advertising.third_party - description: The targeting and changing of promotional content based on processing of specific categories of user data acquired from third party sources. - - # Third Party Sharing - - privacy_key: third_party_sharing - name: Third Party Sharing - description: The transfer of specified data categories to third parties outside of the system/application's scope. - - - privacy_key: third_party_sharing.payment_processing - name: Sharing for Processing Payments - parent_key: third_party_sharing - description: Sharing of specified data categories with a third party for payment processing. - - - privacy_key: third_party_sharing.personalized_advertising - name: Sharing for Personalized Advertising - parent_key: third_party_sharing - description: Sharing of specified data categories for the purpose of marketing/advertising/promotion. - - - privacy_key: third_party_sharing.fraud_detection - name: Sharing for Fraud Detection - parent_key: third_party_sharing - description: Sharing of specified data categories with a third party fo fraud prevention/detection. - - - privacy_key: third_party_sharing.legal_obligation - name: Sharing for Legal Obligation - parent_key: third_party_sharing - description: Sharing of data for legal obligations, including contracts, applicable laws or regulations. - - # Collect - - privacy_key: collect - name: Collect - description: Collecting and storing data in order to use it for another purpose such as data training for ML. - - # Train AI System - - privacy_key: train_ai_system - name: Train AI System - description: Training an AI system. Please note when this data use is specified, the method and degree to which a user may be directly identified in the resulting AI system should be appended. +- fides_key: analytics + organization_fides_key: default_organization + tags: null + name: Analytics + description: Provides analytics for activities such as system and advertising performance + reporting, insights and fraud detection. + parent_key: null + legal_basis: null + special_category: null + recipients: null + legitimate_interest: false + legitimate_interest_impact_assessment: null + is_default: true +- fides_key: analytics.reporting + organization_fides_key: default_organization + tags: null + name: Analytics for Reporting + description: Provides analytics for general reporting such as system and advertising + performance. + parent_key: analytics + legal_basis: null + special_category: null + recipients: null + legitimate_interest: false + legitimate_interest_impact_assessment: null + is_default: true +- fides_key: analytics.reporting.ad_performance + organization_fides_key: default_organization + tags: null + name: Analytics for Advertising Performance + description: Provides analytics for reporting of advertising performance. + parent_key: analytics.reporting + legal_basis: null + special_category: null + recipients: null + legitimate_interest: false + legitimate_interest_impact_assessment: null + is_default: true +- fides_key: analytics.reporting.campaign_insights + organization_fides_key: default_organization + tags: null + name: Analytics for Insights + description: Provides analytics for reporting of campaign insights related to advertising + and promotion activities. + parent_key: analytics.reporting + legal_basis: null + special_category: null + recipients: null + legitimate_interest: false + legitimate_interest_impact_assessment: null + is_default: true +- fides_key: analytics.reporting.system + organization_fides_key: default_organization + tags: null + name: Analytics for System Activity + description: Provides analytics for reporting on system activity. + parent_key: analytics.reporting + legal_basis: null + special_category: null + recipients: null + legitimate_interest: false + legitimate_interest_impact_assessment: null + is_default: true +- fides_key: analytics.reporting.system.performance + organization_fides_key: default_organization + tags: null + name: Analytics for System Performance + description: Provides analytics for reporting on system performance. + parent_key: analytics.reporting.system + legal_basis: null + special_category: null + recipients: null + legitimate_interest: false + legitimate_interest_impact_assessment: null + is_default: true +- fides_key: collect + organization_fides_key: default_organization + tags: null + name: Collect + description: Collects or stores data in order to use it for another purpose which + has not yet been expressly defined. + parent_key: null + legal_basis: null + special_category: null + recipients: null + legitimate_interest: false + legitimate_interest_impact_assessment: null + is_default: true +- fides_key: employment + organization_fides_key: default_organization + tags: null + name: Employment + description: Processes data for the purpose of recruitment or employment and human + resources (HR) related activities. + parent_key: null + legal_basis: null + special_category: null + recipients: null + legitimate_interest: false + legitimate_interest_impact_assessment: null + is_default: true +- fides_key: employment.recruitment + organization_fides_key: default_organization + tags: null + name: Employment Recruitment + description: Processes data of prospective employees for the purpose of recruitment. + parent_key: employment + legal_basis: null + special_category: null + recipients: null + legitimate_interest: false + legitimate_interest_impact_assessment: null + is_default: true +- fides_key: essential + organization_fides_key: default_organization + tags: null + name: Essential + description: Operates the service or product, including legal obligations, support + and basic system operations. + parent_key: null + legal_basis: null + special_category: null + recipients: null + legitimate_interest: false + legitimate_interest_impact_assessment: null + is_default: true +- fides_key: essential.fraud_detection + organization_fides_key: default_organization + tags: null + name: Essential Fraud Detection + description: Detects possible fraud or misuse of the product, service, application + or system. + parent_key: essential + legal_basis: null + special_category: null + recipients: null + legitimate_interest: false + legitimate_interest_impact_assessment: null + is_default: true +- fides_key: essential.legal_obligation + organization_fides_key: default_organization + tags: null + name: Essential Legal Obligation + description: Provides service to meet a legal or compliance obligation such as consent + management. + parent_key: essential + legal_basis: null + special_category: null + recipients: null + legitimate_interest: false + legitimate_interest_impact_assessment: null + is_default: true +- fides_key: essential.service + organization_fides_key: default_organization + tags: null + name: Essential for Service + description: Provides the essential product, service, application or system, without + which the product/service would not be possible. + parent_key: essential + legal_basis: null + special_category: null + recipients: null + legitimate_interest: false + legitimate_interest_impact_assessment: null + is_default: true +- fides_key: essential.service.authentication + organization_fides_key: default_organization + tags: null + name: Essential Service Authentication + description: Authenticate users to the product, service, application or system. + parent_key: essential.service + legal_basis: null + special_category: null + recipients: null + legitimate_interest: false + legitimate_interest_impact_assessment: null + is_default: true +- fides_key: essential.service.notifications + organization_fides_key: default_organization + tags: null + name: Essential Service Notifications + description: Sends notifications about the product, service, application or system. + parent_key: essential.service + legal_basis: null + special_category: null + recipients: null + legitimate_interest: false + legitimate_interest_impact_assessment: null + is_default: true +- fides_key: essential.service.operations + organization_fides_key: default_organization + tags: null + name: Essential for Service Operations + description: Ensures the operation of the product, service, application or system. + parent_key: essential.service + legal_basis: null + special_category: null + recipients: null + legitimate_interest: false + legitimate_interest_impact_assessment: null + is_default: true +- fides_key: essential.service.payment_processing + organization_fides_key: default_organization + tags: null + name: Essential for Service Payment Processing + description: Processes payments for the product, service, application or system. + parent_key: essential.service + legal_basis: null + special_category: null + recipients: null + legitimate_interest: false + legitimate_interest_impact_assessment: null + is_default: true +- fides_key: essential.service.upgrades + organization_fides_key: default_organization + tags: null + name: Essential for Service Upgrades + description: Provides timely system upgrade information options. + parent_key: essential.service + legal_basis: null + special_category: null + recipients: null + legitimate_interest: false + legitimate_interest_impact_assessment: null + is_default: true +- fides_key: essential.service.notifications.email + organization_fides_key: default_organization + tags: null + name: Essential Email Service Notifications + description: Sends email notifications about the product, service, application or + system. + parent_key: essential.service.notifications + legal_basis: null + special_category: null + recipients: null + legitimate_interest: false + legitimate_interest_impact_assessment: null + is_default: true +- fides_key: essential.service.notifications.sms + organization_fides_key: default_organization + tags: null + name: Essential SMS Service Notifications + description: Sends SMS notifications about the product, service, application or + system. + parent_key: essential.service.notifications + legal_basis: null + special_category: null + recipients: null + legitimate_interest: false + legitimate_interest_impact_assessment: null + is_default: true +- fides_key: essential.service.operations.support + organization_fides_key: default_organization + tags: null + name: Essential for Serivce Operations Support + description: Provides support for the product, service, application or system. + parent_key: essential.service.operations + legal_basis: null + special_category: null + recipients: null + legitimate_interest: false + legitimate_interest_impact_assessment: null + is_default: true +- fides_key: essential.service.operations.support.optimization + organization_fides_key: default_organization + tags: null + name: Essential for Serivce Support Optimization + description: Optimizes and improves support for the product, service, application + or system. + parent_key: essential.service.operations.support + legal_basis: null + special_category: null + recipients: null + legitimate_interest: false + legitimate_interest_impact_assessment: null + is_default: true +- fides_key: finance + organization_fides_key: default_organization + tags: null + name: Finance + description: Enables finance and accounting activities such as audits and tax reporting. + parent_key: null + legal_basis: null + special_category: null + recipients: null + legitimate_interest: false + legitimate_interest_impact_assessment: null + is_default: true +- fides_key: improve + organization_fides_key: default_organization + tags: null + name: Improves the product, service, application or system. + description: Improve the product, service, application or system. + parent_key: null + legal_basis: null + special_category: null + recipients: null + legitimate_interest: false + legitimate_interest_impact_assessment: null + is_default: true +- fides_key: improve.system + organization_fides_key: default_organization + tags: null + name: System + description: Improves the specific product, service, application or system. + parent_key: improve + legal_basis: null + special_category: null + recipients: null + legitimate_interest: false + legitimate_interest_impact_assessment: null + is_default: true +- fides_key: marketing + organization_fides_key: default_organization + tags: null + name: Marketing + description: Enables marketing, promotion, advertising and sales activities for + the product, service, application or system. + parent_key: null + legal_basis: null + special_category: null + recipients: null + legitimate_interest: false + legitimate_interest_impact_assessment: null + is_default: true +- fides_key: marketing.advertising + organization_fides_key: default_organization + tags: null + name: Advertising, Marketing or Promotion + description: Advertises or promotes the product, service, application or system + and associated services. + parent_key: marketing + legal_basis: null + special_category: null + recipients: null + legitimate_interest: false + legitimate_interest_impact_assessment: null + is_default: true +- fides_key: marketing.communications + organization_fides_key: default_organization + tags: null + name: Marketing Communications + description: Uses combined channels to message and market to a customer, user or + prospect. + parent_key: marketing + legal_basis: null + special_category: null + recipients: null + legitimate_interest: false + legitimate_interest_impact_assessment: null + is_default: true +- fides_key: marketing.advertising.first_party + organization_fides_key: default_organization + tags: null + name: First Party Advertising + description: Serves advertisements based on first party data collected or derived + about the user. + parent_key: marketing.advertising + legal_basis: null + special_category: null + recipients: null + legitimate_interest: false + legitimate_interest_impact_assessment: null + is_default: true +- fides_key: marketing.advertising.frequency_capping + organization_fides_key: default_organization + tags: null + name: Frequency Capping + description: Restricts the number of times a specific advertisement is shown to + an individual. + parent_key: marketing.advertising + legal_basis: null + special_category: null + recipients: null + legitimate_interest: false + legitimate_interest_impact_assessment: null + is_default: true +- fides_key: marketing.advertising.negative_targeting + organization_fides_key: default_organization + tags: null + name: Negative Targeting + description: Enforces rules used to ensure a certain audience or group is not targeted + by advertising. + parent_key: marketing.advertising + legal_basis: null + special_category: null + recipients: null + legitimate_interest: false + legitimate_interest_impact_assessment: null + is_default: true +- fides_key: marketing.advertising.third_party + organization_fides_key: default_organization + tags: null + name: Third Party Advertising + description: Serves advertisements based on data within the system or joined with + data provided by 3rd parties. + parent_key: marketing.advertising + legal_basis: null + special_category: null + recipients: null + legitimate_interest: false + legitimate_interest_impact_assessment: null + is_default: true +- fides_key: marketing.advertising.first_party.contextual + organization_fides_key: default_organization + tags: null + name: First Party Contextual Advertising + description: Serves advertisements based on current content being viewed by the + user of the system or service. + parent_key: marketing.advertising.first_party + legal_basis: null + special_category: null + recipients: null + legitimate_interest: false + legitimate_interest_impact_assessment: null + is_default: true +- fides_key: marketing.advertising.first_party.targeted + organization_fides_key: default_organization + tags: null + name: First Party Personalized Advertising + description: Targets advertisements based on data collected or derived about the + user from use of the system. + parent_key: marketing.advertising.first_party + legal_basis: null + special_category: null + recipients: null + legitimate_interest: false + legitimate_interest_impact_assessment: null + is_default: true +- fides_key: marketing.advertising.third_party.targeted + organization_fides_key: default_organization + tags: null + name: Third Party Targeted Advertising + description: Targets advertisements based on data within the system or joined with + data provided by 3rd parties. + parent_key: marketing.advertising.third_party + legal_basis: null + special_category: null + recipients: null + legitimate_interest: false + legitimate_interest_impact_assessment: null + is_default: true +- fides_key: marketing.communications.email + organization_fides_key: default_organization + tags: null + name: Marketing Email Communications + description: Sends email marketing communications. + parent_key: marketing.communications + legal_basis: null + special_category: null + recipients: null + legitimate_interest: false + legitimate_interest_impact_assessment: null + is_default: true +- fides_key: marketing.communications.sms + organization_fides_key: default_organization + tags: null + name: Marketing SMS Communications + description: Sends SMS marketing communications. + parent_key: marketing.communications + legal_basis: null + special_category: null + recipients: null + legitimate_interest: false + legitimate_interest_impact_assessment: null + is_default: true +- fides_key: operations + organization_fides_key: default_organization + tags: null + name: Operations + description: Supports business processes necessary to the organization's operation. + parent_key: null + legal_basis: null + special_category: null + recipients: null + legitimate_interest: false + legitimate_interest_impact_assessment: null + is_default: true +- fides_key: personalize + organization_fides_key: default_organization + tags: null + name: Personalize + description: Personalizes the product, service, application or system. + parent_key: null + legal_basis: null + special_category: null + recipients: null + legitimate_interest: false + legitimate_interest_impact_assessment: null + is_default: true +- fides_key: personalize.content + organization_fides_key: default_organization + tags: null + name: Content Personalization + description: Personalizes the content of the product, service, application or system. + parent_key: personalize + legal_basis: null + special_category: null + recipients: null + legitimate_interest: false + legitimate_interest_impact_assessment: null + is_default: true +- fides_key: personalize.system + organization_fides_key: default_organization + tags: null + name: System Personalization + description: Personalizes the product, service, application or system. + parent_key: personalize + legal_basis: null + special_category: null + recipients: null + legitimate_interest: false + legitimate_interest_impact_assessment: null + is_default: true +- fides_key: sales + organization_fides_key: default_organization + tags: null + name: Sales + description: Supports sales activities such as communications and outreach. + parent_key: null + legal_basis: null + special_category: null + recipients: null + legitimate_interest: false + legitimate_interest_impact_assessment: null + is_default: true +- fides_key: third_party_sharing + organization_fides_key: default_organization + tags: null + name: Third Party Sharing + description: Transfers data to third parties outside of the system or service's + scope. + parent_key: null + legal_basis: null + special_category: null + recipients: null + legitimate_interest: false + legitimate_interest_impact_assessment: null + is_default: true +- fides_key: third_party_sharing.legal_obligation + organization_fides_key: default_organization + tags: null + name: Sharing for Legal Obligation + description: Shares data for legal obligations, including contracts, applicable + laws or regulations. + parent_key: third_party_sharing + legal_basis: null + special_category: null + recipients: null + legitimate_interest: false + legitimate_interest_impact_assessment: null + is_default: true +- fides_key: train_ai_system + organization_fides_key: default_organization + tags: null + name: Train AI System + description: Trains an AI system or data model for machine learning. + parent_key: null + legal_basis: null + special_category: null + recipients: null + legitimate_interest: false + legitimate_interest_impact_assessment: null + is_default: true diff --git a/data_uses.csv b/data_uses.csv new file mode 100644 index 00000000..5df33024 --- /dev/null +++ b/data_uses.csv @@ -0,0 +1,47 @@ +fides_key,is_default,legal_basis,legitimate_interest,legitimate_interest_impact_assessment,name,organization_fides_key,parent_key,recipients,special_category,tags,description +analytics,TRUE,,FALSE,,Analytics,default_organization,,,,,"Analytics for activities such as system and advertising performance reporting, insights and fraud detection." +analytics.reporting,TRUE,,FALSE,,Analytics for Reporting,default_organization,analytics.reporting,,,,Analytics for general reporting such as system and advertising performance. +analytics.reporting.ad_performance,TRUE,,FALSE,,Analytics for Advertising Performance,default_organization,analytics.reporting,,,,Analytics for reporting of advertising performance. +analytics.reporting.campaign_insights,TRUE,,FALSE,,Analytics for Insights,default_organization,analytics.reporting,,,,Analytics for reporting of campaign insights related to advertising and promotion activities. +analytics.reporting.system,TRUE,,FALSE,,Analytics for System Activity,default_organization,analytics.reporting,,,,Analytics for reporting on system activity. +analytics.reporting.system.performance,TRUE,,FALSE,,Analytics for System Performance,default_organization,analytics.reporting,,,,Analytics for reporting on system performance. +collect,TRUE,,FALSE,,Collect,default_organization,,,,,Collecting or storing data in order to use it for another purpose which has not yet been expressly defined. +employment,TRUE,,FALSE,,Employment,default_organization,,,,,Processing of data for the purpose of recruitment or employment and human resources (HR) related activities. +employment.recruitment,TRUE,,FALSE,,Employment Recruitment,default_organization,employment,,,,Processing of prospective employees for the purpose of recruitment. +essential,TRUE,,FALSE,,Essential,default_organization,,,,,"Essential to operating the service or product, including legal obligations, support and basic system operations." +essential.fraud_detection,TRUE,,FALSE,,Essential Fraud Detection,default_organization,essential,,,,"Essential to detect possible fraud or misuse of the product, service, application or system." +essential.legal_obligation,TRUE,,FALSE,,Essential Legal Obligation,default_organization,essential,,,,Essential to meeting a legal or compliance obligations such as consent management. +essential.service,TRUE,,FALSE,,Essential for Service,default_organization,essential,,,,"Essential to providing the product, service, application or system, without which the product/service would not be possible." +essential.service.notifications,TRUE,,FALSE,,Essential Service Notifications,default_organization,essential.service,,,,"Essential to send notifications about the product, service, application or system." +essential.service.notifications.email,TRUE,,FALSE,,Essential Email Service Notifications,default_organization,essential.service.notifications,,,,"Essential to send email notifications about the product, service, application or system." +essential.service.notifications.sms,TRUE,,FALSE,,Essential SMS Service Notifications,default_organization,essential.service.notifications,,,,"Essential to send SMS notifications about the product, service, application or system." +essential.service.operations,TRUE,,FALSE,,Essential for Service Operations,default_organization,essential.service,,,,"Essential to ensure the operation of the product, service, application or system." +essential.service.operations.support,TRUE,,FALSE,,Essential for Service Operations Support,default_organization,essential.service.operations,,,,"Essential to provide support for the product, service, application or system." +essential.service.operations.support.optimization,TRUE,,FALSE,,Essential for Service Support Optimization,default_organization,essential.service.operations.support,,,,"Essential to optimize and improve support for for the product, service, application or system." +essential.service.payment_processing,TRUE,,FALSE,,Essential for Service Payment Processing,default_organization,essential.service,,,,"Essential to process payments for the product, service, application or system." +essential.service.upgrades,TRUE,,FALSE,,Essential for Service Upgrades,default_organization,essential.service,,,,Essential to provide timely system upgrade information options. +finance,TRUE,,FALSE,,Finance,default_organization,,,,,Finance and accounting activities such as audits and tax reporting. +improve,TRUE,,FALSE,,Improve,default_organization,,,,,"Improve the product, service, application or system." +improve.system,TRUE,,FALSE,,System,default_organization,improve,,,,"Improve the specific product, service, application or system." +marketing,TRUE,,FALSE,,Marketing,default_organization,,,,,"Marketing, promotion, advertising and sales activities for the product, service, application or system." +marketing.advertising,TRUE,,FALSE,,"Advertising, Marketing or Promotion",default_organization,marketing,,,,"Advertising and promotion for the product, service, application or system and associated services." +marketing.advertising.first_party,TRUE,,FALSE,,First Party Advertising,default_organization,marketing.advertising,,,,Advertising and promotion based on first party data collected or derived about the user. +marketing.advertising.first_party.contextual,TRUE,,FALSE,,First Party Contextual Advertising,default_organization,marketing.advertising.first_party,,,,Contextual advertising based on current content being viewed by the user of the system or service. +marketing.advertising.first_party.targeted,TRUE,,FALSE,,First Party Personalized Advertising,default_organization,marketing.advertising.first_party,,,,"Targeted advertising and promotion of services to users based on data collected, or derived about the user from use of the system." +marketing.advertising.frequency_capping,TRUE,,FALSE,,Frequency Capping,default_organization,marketing.advertising,,,,Restricting the number of times a specific advertisement is shown to an individual. +marketing.advertising.negative_targeting,TRUE,,FALSE,,Negative Targeting,default_organization,marketing.advertising,,,,Rules used to ensure a certain audience or group is not targeted by advertising. +marketing.advertising.third_party,TRUE,,FALSE,,Third Party Advertising,default_organization,marketing.advertising,,,,Advertising and promotion of services to users from data joined with or provided by 3rd parties. +marketing.advertising.third_party.targeted,TRUE,,FALSE,,Third Party Targeted Advertising,default_organization,marketing.advertising.third_party,,,,Targeted advertising and promotion of services to users from data joined with or provided by 3rd parties. +marketing.communications,TRUE,,FALSE,,Marketing Communications,default_organization,,,,,"Combined use of channels to message and market to a customer, user or prospect." +marketing.communications.email,TRUE,,FALSE,,Marketing Email Communications,default_organization,marketing.communications,,,,E-mail marketing communications. +marketing.communications.sms,TRUE,,FALSE,,Marketing SMS Communications,default_organization,marketing.communications,,,,SMS marketing communications. +operations,TRUE,,FALSE,,Operations,default_organization,,,,,Business processes necessary to the organization's operation. +personalize,TRUE,,FALSE,,Personalize,default_organization,,,,,"The use of specified data categories to personalize the product, service, application or system." +personalize.content,TRUE,,FALSE,,Content Personalization,default_organization,personalize,,,,"Personalization of the content of the product, service, application or system." +personalize.system,TRUE,,FALSE,,System Personalization,default_organization,personalize,,,,"Personalization of the product, service, application or system." +sales,TRUE,,FALSE,,Sales,default_organization,,,,,Sales activities such as communications and outreach. +third_party_sharing,TRUE,,FALSE,,Third Party Sharing,default_organization,,,,,The transfer of data to third parties outside of the system or service's scope. +third_party_sharing.payment_processing,TRUE,,FALSE,,Sharing for Processing Payments,default_organization,third_party_sharing,,,,[relocated to essential.service] +third_party_sharing.fraud_detection,TRUE,,FALSE,,Sharing for Fraud Detection,default_organization,third_party_sharing,,,,[relocated to essential.service] +third_party_sharing.legal_obligation,TRUE,,FALSE,,Sharing for Legal Obligation,default_organization,third_party_sharing,,,,"Sharing of data for legal obligations, including contracts, applicable laws or regulations." +train_ai_system,TRUE,,FALSE,,Train AI System,default_organization,,,,,Training an AI system or data model for machine learning. \ No newline at end of file diff --git a/mkdocs/docs/css/taxonomy.css b/mkdocs/docs/css/taxonomy.css index d801f6b8..bef08ccf 100644 --- a/mkdocs/docs/css/taxonomy.css +++ b/mkdocs/docs/css/taxonomy.css @@ -157,6 +157,11 @@ margin-top: 1em; } +.vis-tooltip code { + font-size: 10px; + color: rgb(79, 86, 107); +} + /* Sunburst */ diff --git a/mkdocs/docs/csv/data_categories.csv b/mkdocs/docs/csv/data_categories.csv index 6b31375b..96dc8401 100644 --- a/mkdocs/docs/csv/data_categories.csv +++ b/mkdocs/docs/csv/data_categories.csv @@ -1,67 +1,58 @@ -privacy_key,name,parent_key,description -data_category,Data Category,, -system,System Data,data_category,"Data unique to, and under control of the system." -system.authentication,Authentication Data,system,Data used to manage access to the system. -system.operations,Operations Data,system,Data used for system operations. -user,User Data,data_category,"Data related to the user of the system, either provided directly or derived based on their usage." -user.account,Account Data,user,Data related to a user's system account. -user.account.contact,Account Contact Data,user.account,Contact data related to a system account. -user.account.contact.city,Account City,user.account.contact,Account's city level address data. -user.account.contact.country,Account Country,user.account.contact,Account's country level address data. -user.account.contact.email,Account Email,user.account.contact,Account's email address. -user.account.contact.phone_number,Account Phone Number,user.account.contact,Account's phone number. -user.account.contact.postal_code,Account Postal Code,user.account.contact,Account's postal code. -user.account.contact.state,Account State,user.account.contact,Account's state level address data. -user.account.contact.street,Account Street,user.account.contact,Account's street level address. -user.account.payment,Payment Data,user.account,Payment data related to system account. -user.account.payment.financial_account_number,Account Payment Financial Account Number,user.account.payment,"Financial account number for an account's payment card, bank account, or other financial system." -user.device,Device Data,user,"Data related to a user's device, configuration, and settings." -user.device.cookie_id,Cookie ID,user.device,Cookie unique identification number. -user.device.device_id,Device ID,user.device,Device unique identification number. -user.device.ip_address,IP Address,user.device,Unique identifier related to device connection. -user.contact,Contact Data,user,User contact data for purposes other than account management. -user.contact.email,User Contact Email,user.contact,"User's email address." -user.contact.phone_number,User Contact Phone Number,user.contact,"User's phone number." -user.contact.address,Address Data,user.contact,User contact data related to an address. -user.contact.address.city,User Contact City,user.contact.address,"User's city level address data." -user.contact.address.country,User Contact Country,user.contact.address,"User's country level address data." -user.contact.address.postal_code,User Contact Postal Code,user.contact.address,"User's postal code." -user.contact.address.state,User Contact State,user.contact.address,"User's state level address data." -user.contact.address.street,User Contact Street,user.contact.address,"User's street level address data." -user.credentials,Credentials,user,User authentication data. -user.credentials.biometric_credentials,Biometric Credentials,user.credentials,Credentials for system authentication. -user.credentials.password,Password,user.credentials,Password for system authentication. -user.financial,Financial Data,user,Payment data and financial history. -user.financial.account_number,Financial Account Number,user.financial,"User's account number for a payment card, bank account, or other financial system." -user.government_id,Government ID,user,State provided identification data. -user.government_id.drivers_license_number,"Driver's License Number",user.government_id,State issued driving identification number. -user.government_id.national_identification_number,National Identification Number,user.government_id,State issued personal identification number. -user.government_id.passport_number,Passport Number,user.government_id,State issued passport data. -user.biometric,Biometric Data,user,Encoded characteristics of a user. -user.biometric_health,Biometric Health Data,user,"Encoded characteristics of a user's health." -user.browsing_history,Browsing History,user,Content browsing history of a user. -user.childrens,Children's Data,user,Data relating to children. -user.date_of_birth,Date of Birth,user,"User's date of birth." -user.demographic,Demographic Data,user,Demographic data about a user. -user.gender,Gender,user,Gender of an individual. -user.genetic,Genetic Data,user,Data about the genetic makeup provided by a user. -user.health_and_medical,Health and Medical Data,user,"Health records or individual's personal medical information." -user.job_title,Job Title,user,Professional data. -user.location,Location Data,user,Records of the location of a user. -user.name,Name,user,"User's real name." -user.non_specific_age,Non-Specific Age,user,Age range data. -user.media_consumption,Media Consumption Data,user,Media type consumption data of a user. -user.observed,Observed Data,user,Data collected through observation of use of the system. -user.organization,Organization Data,user,Data that is linked to, or identifies an organization. -user.political_opinion,Political Opinion,user,"Data related to the individual's political opinions." -user.profiling,Profiling Data,user,Preference and interest data about a user. -user.race,Race,user,Racial or ethnic origin data. -user.religious_belief,Religious Belief,user,Religion or religious belief. -user.search_history,Search History,user,Records of search history and queries of a user. -user.sensor,Sensor Data,user,Non-user identifiable measurement data derived from sensors and monitoring systems. -user.sexual_orientation,Sexual Orientation,user,Personal sex life or sexual data. -user.social,Social Data,user,Social activity and interaction data. -user.telemetry,Telemetry Data,user,User measurement data from system sensors and monitoring. -user.unique_id,Unique ID,user,Unique identifier for a user assigned through system use. -user.user_sensor,User Sensor Data,user,Measurement data derived about a user's environment through system use. -user.workplace,Workplace,user,Organization of employment. \ No newline at end of file +fides_key,is_default,name,organization_fides_key,parent_key,tags,description +data_category,,Data Category,,,, +system,True,System Data,default_organization,data_category,,"Data unique to, and under control of the system." +system.authentication,True,Authentication Data,default_organization,system,,Data used to manage access to the system. +system.operations,True,Operations Data,default_organization,system,,Data used for system operations. +user,True,User Data,default_organization,data_category,,"Data related to the user of the system, either provided directly or derived based on their usage." +user.payment,True,Payment Data,default_organization,user,,Payment data related to user. +user.biometric,True,Biometric Data,default_organization,user,,Encoded characteristics provided by a user. +user.biometric_health,True,Biometric Health Data,default_organization,user,,Encoded characteristic collected about a user. +user.browsing_history,True,Browsing History,default_organization,user,,Content browsing history of a user. +user.demographic,True,Demographic Data,default_organization,user,,Demographic data about a user. +user.contact,True,Contact Data,default_organization,user,,Contact data collected about a user. +user.device,True,Device Data,default_organization,user,,"Data related to a user's device, configuration and setting." +user.gender,True,Gender,default_organization,user,,Gender of an individual. +user.location,True,Location Data,default_organization,user,,Records of the location of a user. +user.media_consumption,True,Media Consumption Data,default_organization,user,,Media type consumption data of a user. +user.non_specific_age,True,Non-Specific Age,default_organization,user,,Age range data. +user.observed,True,Observed Data,default_organization,user,,Data collected through observation of use of the system. +user.profiling,True,Profiling Data,default_organization,user,,Preference and interest data about a user. +user.race,True,Race,default_organization,user,,Racial or ethnic origin data. +user.religious_belief,True,Religious Belief,default_organization,user,,Religion or religious belief. +user.search_history,True,Search History,default_organization,user,,Records of search history and queries of a user. +user.sexual_orientation,True,Sexual Orientation,default_organization,user,,Personal sex life or sexual data. +user.social,True,Social Data,default_organization,user,,Social activity and interaction data. +user.telemetry,True,Telemetry Data,default_organization,user,,User identifiable measurement data from system sensors and monitoring. +user.unique_id,True,Unique ID,default_organization,user,,Unique identifier for a user assigned through system use. +user.user_sensor,True,User Sensor Data,default_organization,user,,Measurement data about a user's environment through system use. +user.organization,True,Organization Identifiable Data,default_organization,user,,"Data that is linked to, or identifies an organization." +user.workplace,True,Workplace,default_organization,user,,Organization of employment. +user.sensor,True,Sensor Data,default_organization,user,,Measurement data from sensors and monitoring systems. +user.childrens,True,Children's Data,default_organization,user,,Data relating to children. +user.credentials,True,Credentials,default_organization,user,,User authentication data. +user.date_of_birth,True,Date of Birth,default_organization,user,,User's date of birth. +user.financial,True,Financial Data,default_organization,user,,Payment data and financial history. +user.genetic,True,Genetic Data,default_organization,user,,Data about the genetic makeup provided by a user. +user.government_id,True,Government ID,default_organization,user,,State provided identification data. +user.health_and_medical,True,Health and Medical Data,default_organization,user,,Health records or individual's personal medical information. +user.job_title,True,Job Title,default_organization,user,,Professional data. +user.name,True,Name,default_organization,user,,User's real name. +user.political_opinion,True,Political Opinion,default_organization,user,,Data related to the individual's political opinions. +user.contact.address,True,Contact Data,default_organization,user.contact,,Contact address data collected about a user. +user.contact.email,True,User Contact Email,default_organization,user.contact,,User's contact email address. +user.contact.phone_number,True,User Contact Phone Number,default_organization,user.contact,,User's phone number. +user.contact.address.city,True,User Contact City,default_organization,user.contact.address,,User's city level address data. +user.contact.address.country,True,User Contact Country,default_organization,user.contact.address,,User's country level address data. +user.contact.address.postal_code,True,User Contact Postal Code,default_organization,user.contact.address,,User's postal code. +user.contact.address.state,True,User Contact State,default_organization,user.contact.address,,User's state level address data. +user.contact.address.street,True,User Contact Street,default_organization,user.contact.address,,User's street level address data. +user.credentials.biometric_credentials,True,Biometric Credentials,default_organization,user.credentials,,Credentials for system authentication. +user.credentials.password,True,Password,default_organization,user.credentials,,Password for system authentication. +user.device.cookie_id,True,Cookie ID,default_organization,user.device,,Cookie unique identification number. +user.device.device_id,True,Device ID,default_organization,user.device,,Device unique identification number. +user.device.ip_address,True,IP Address,default_organization,user.device,,Unique identifier related to device connection. +user.financial.account_number,True,User Financial Account Number,default_organization,user.financial,,"User's account number for a payment card, bank account, or other financial system." +user.government_id.drivers_license_number,True,Driver's License Number,default_organization,user.government_id,,State issued driving identification number. +user.government_id.national_identification_number,True,National Identification Number,default_organization,user.government_id,,State issued personal identification number. +user.government_id.passport_number,True,Passport Number,default_organization,user.government_id,,State issued passport data. +user.payment.financial_account_number,True,Account Payment Financial Account Number,default_organization,user.payment,,"Financial account number for an account's payment card, bank account, or other financial system." diff --git a/mkdocs/docs/csv/data_qualifiers.csv b/mkdocs/docs/csv/data_qualifiers.csv index 9ddcde96..7781c20f 100644 --- a/mkdocs/docs/csv/data_qualifiers.csv +++ b/mkdocs/docs/csv/data_qualifiers.csv @@ -1,7 +1,7 @@ -privacy_key,name,parent_key,description -data_qualifier,Data Qualifier,, -aggregated,Aggregated Data,data_qualifier,Statistical data that does not contain individually identifying information but includes information about groups of individuals that renders individual identification impossible. -aggregated.anonymized,Anonymized Data,aggregated,Data where all attributes have been sufficiently altered that the individaul cannot be reidentified by this data or in combination with other datasets. -aggregated.anonymized.unlinked_pseudonymized,Unlinked Pseudonymized Data,aggregated.anonymized,"Data for which all identifiers have been substituted with unrelated values and linkages broken such that it may not be reversed, even by the party that performed the pseudonymization." -aggregated.anonymized.unlinked_pseudonymized.pseudonymized,Pseudonymized Data,aggregated.anonymized.unlinked_pseudonymized,"Data for which all identifiers have been substituted with unrelated values, rendering the individual unidentifiable and cannot be reasonably reversed other than by the party that performed the pseudonymization." -aggregated.anonymized.unlinked_pseudonymized.pseudonymized.identified,Identified Data,aggregated.anonymized.unlinked_pseudonymized.pseudonymized,Data that directly identifies an individual. \ No newline at end of file +fides_key,is_default,name,organization_fides_key,parent_key,tags,description +data_qualifier,,Data Qualifier,,,, +aggregated,True,Aggregated Data,default_organization,data_qualifier,,Statistical data that does not contain individually identifying information but includes information about groups of individuals that renders individual identification impossible. +aggregated.anonymized,True,Anonymized Data,default_organization,aggregated,,Data where all attributes have been sufficiently altered that the individaul cannot be reidentified by this data or in combination with other datasets. +aggregated.anonymized.unlinked_pseudonymized,True,Unlinked Pseudonymized Data,default_organization,aggregated.anonymized,,"Data for which all identifiers have been substituted with unrelated values and linkages broken such that it may not be reversed, even by the party that performed the pseudonymization." +aggregated.anonymized.unlinked_pseudonymized.pseudonymized,True,Pseudonymized Data,default_organization,aggregated.anonymized.unlinked_pseudonymized,,"Data for which all identifiers have been substituted with unrelated values, rendering the individual unidentifiable and cannot be reasonably reversed other than by the party that performed the pseudonymization." +aggregated.anonymized.unlinked_pseudonymized.pseudonymized.identified,True,Identified Data,default_organization,aggregated.anonymized.unlinked_pseudonymized.pseudonymized,,Data that directly identifies an individual. diff --git a/mkdocs/docs/csv/data_subjects.csv b/mkdocs/docs/csv/data_subjects.csv index 259f38fe..dd2eecb8 100644 --- a/mkdocs/docs/csv/data_subjects.csv +++ b/mkdocs/docs/csv/data_subjects.csv @@ -1,17 +1,17 @@ -privacy_key,name,parent_key,description -data_subject,Data Subject,, -anonymous_user,Anonymous User,data_subject,An individual that is unidentifiable to the systems. Note - This should only be applied to truly anonymous users where there is no risk of re-identification -citizen_voter,Citizen Voter,data_subject,An individual registered to voter with a state or authority. -commuter,Commuter,data_subject,An individual that is traveling or transiting in the context of location tracking. -consultant,Consultant,data_subject,An individual employed in a consultative/temporary capacity by the organization. -customer,Custom,data_subject,An individual or other organization that purchases goods or services from the organization. -employee,Employee,data_subject,An individual employed by the organization. -job_applicant,Job Applicant,data_subject,An individual applying for employment to the organization. -next_of_kin,Next of Kin,data_subject,A relative of any other individual subject where such a relationship is known. -passenger,Passenger,data_subject,An individual traveling on some means of provided transport. -patient,Patient,data_subject,An individual identified for the purposes of any medical care. -prospect,Prospect,data_subject,An individual or organization to whom an organization is selling goods or services. -shareholder,Shareholder,data_subject,An individual or organization that holds equity in the organization. -supplier_vendor,Supplier/Vendor,data_subject,An individual or organization that provides services or goods to the organization. -trainee,Trainee,data_subject,An individual undergoing training by the organization. -visitor,Visitor,data_subject,An individual visiting a location. +automated_decisions_or_profiling,fides_key,is_default,name,organization_fides_key,rights,tags,parent_key,description +,data_subject,,Data Subject,,,,, +,anonymous_user,True,Anonymous User,default_organization,,,data_subject,An individual that is unidentifiable to the systems. Note - This should only be applied to truly anonymous users where there is no risk of re-identification +,citizen_voter,True,Citizen Voter,default_organization,,,data_subject,An individual registered to voter with a state or authority. +,commuter,True,Commuter,default_organization,,,data_subject,An individual that is traveling or transiting in the context of location tracking. +,consultant,True,Consultant,default_organization,,,data_subject,An individual employed in a consultative/temporary capacity by the organization. +,customer,True,Customer,default_organization,,,data_subject,An individual or other organization that purchases goods or services from the organization. +,employee,True,Employee,default_organization,,,data_subject,An individual employed by the organization. +,job_applicant,True,Job Applicant,default_organization,,,data_subject,An individual applying for employment to the organization. +,next_of_kin,True,Next of Kin,default_organization,,,data_subject,A relative of any other individual subject where such a relationship is known. +,passenger,True,Passenger,default_organization,,,data_subject,An individual traveling on some means of provided transport. +,patient,True,Patient,default_organization,,,data_subject,An individual identified for the purposes of any medical care. +,prospect,True,Prospect,default_organization,,,data_subject,An individual or organization to whom an organization is selling goods or services. +,shareholder,True,Shareholder,default_organization,,,data_subject,An individual or organization that holds equity in the organization. +,supplier_vendor,True,Supplier/Vendor,default_organization,,,data_subject,An individual or organization that provides services or goods to the organization. +,trainee,True,Trainee,default_organization,,,data_subject,An individual undergoing training by the organization. +,visitor,True,Visitor,default_organization,,,data_subject,An individual visiting a location. diff --git a/mkdocs/docs/csv/data_uses.csv b/mkdocs/docs/csv/data_uses.csv index c8529166..d795f67d 100644 --- a/mkdocs/docs/csv/data_uses.csv +++ b/mkdocs/docs/csv/data_uses.csv @@ -1,25 +1,47 @@ -privacy_key,name,parent_key,description -data_use,Data Use,, -provide,Provide the capability,data_use,"Provide, give, or make available the product, service, application or system." -provide.service,System,provide,"The source system, product, service or application being provided to the user." -provide.service.operations,System Operations,provide.service,Use of specified data categories to operate and protect the system in order to provide the service. -provide.service.operations.support,Operations Support,provide.service.operations,Use of specified data categories to provide support for operation and protection of the system in order to provide the service. -provide.service.operations.support.optimization,Support Optimization,provide.service.operations.support,Use of specified data categories to optimize and improve support operations in order to provide the service. -provide.service.upgrades,Offer Upgrades,provide.service,Offer upgrades or upsales such as increased capacity for the service based on monitoring of service usage. -improve,Improve the capability,data_use,"Improve the product, service, application or system." -improve.system,Service,improve,"The source service, product, system or application being improved." -personalize,Personalize the capability,data_use,"Personalize the product, service, application or system." -personalize.system,System,personalize,"The source system, product, service or application being personalized." -advertising,"Advertising, Marketing or Promotion",data_use,The promotion of products or services targeted to users based on the the processing of user provided data in the system. -advertising.first_party,First Party Advertising,advertising,The promotion of products or services targeting users based on processing of derviced data from prior use of the system. -advertising.third_party,Third Party Advertising,advertising,The promotion of products or services targeting users based on processing of specific categories of data acquired from third party sources. -advertising.first_party.contextual,First Party Contextual Advertising,advertising.first_party,The promotion of products or services targeted to users based on the processing of derived data from the users prior use of the services. -advertising.first_party.personalized,First Party Personalized Advertising,advertising.first_party,The targeting and changing of promotional content based on processing of specific data categories from the user. -advertising.third_party.personalized,Third Party Personalized Advertising,advertising.third_party,The targeting and changing of promotional content based on processing of specific categories of user data acquired from third party sources. -third_party_sharing,Third Party Sharing,data_use,The transfer of specified data categories to third parties outside of the system/application's scope. -third_party_sharing.payment_processing,Sharing for Processing Payments,third_party_sharing,Sharing of specified data categories with a third party for payment processing. -third_party_sharing.personalized_advertising,Sharing for Personalized Advertising,third_party_sharing,Sharing of specified data categories for the purpose of marketing/advertising/promotion. -third_party_sharing.fraud_detection,Sharing for Fraud Detection,third_party_sharing,Sharing of specified data categories with a third party fo fraud prevention/detection. -third_party_sharing.legal_obligation,Sharing for Legal Obligation,third_party_sharing,"Sharing of data for legal obligations, including contracts, applicable laws or regulations." -collect,Collect,data_use,Collecting and storing data in order to use it for another purpose such as data training for ML. -train_ai_system,Train AI System,data_use,"Training an AI system. Please note when this data use is specified, the method and degree to which a user may be directly identified in the resulting AI system should be appended." +fides_key,is_default,legal_basis,legitimate_interest,legitimate_interest_impact_assessment,name,organization_fides_key,parent_key,recipients,special_category,tags,description +data_use,,,,,Data Use,,,,,, +analytics,True,,False,,Analytics,default_organization,data_use,,,,"Provides analytics for activities such as system and advertising performance reporting, insights and fraud detection." +analytics.reporting,True,,False,,Analytics for Reporting,default_organization,analytics,,,,Provides analytics for general reporting such as system and advertising performance. +analytics.reporting.ad_performance,True,,False,,Analytics for Advertising Performance,default_organization,analytics.reporting,,,,Provides analytics for reporting of advertising performance. +analytics.reporting.campaign_insights,True,,False,,Analytics for Insights,default_organization,analytics.reporting,,,,Provides analytics for reporting of campaign insights related to advertising and promotion activities. +analytics.reporting.system,True,,False,,Analytics for System Activity,default_organization,analytics.reporting,,,,Provides analytics for reporting on system activity. +analytics.reporting.system.performance,True,,False,,Analytics for System Performance,default_organization,analytics.reporting.system,,,,Provides analytics for reporting on system performance. +collect,True,,False,,Collect,default_organization,data_use,,,,Collects or stores data in order to use it for another purpose which has not yet been expressly defined. +employment,True,,False,,Employment,default_organization,data_use,,,,Processes data for the purpose of recruitment or employment and human resources (HR) related activities. +employment.recruitment,True,,False,,Employment Recruitment,default_organization,employment,,,,Processes data of prospective employees for the purpose of recruitment. +essential,True,,False,,Essential,default_organization,data_use,,,,"Operates the service or product, including legal obligations, support and basic system operations." +essential.fraud_detection,True,,False,,Essential Fraud Detection,default_organization,essential,,,,"Detects possible fraud or misuse of the product, service, application or system." +essential.legal_obligation,True,,False,,Essential Legal Obligation,default_organization,essential,,,,Provides service to meet a legal or compliance obligation such as consent management. +essential.service,True,,False,,Essential for Service,default_organization,essential,,,,"Provides the essential product, service, application or system, without which the product/service would not be possible." +essential.service.authentication,True,,False,,Essential Service Authentication,default_organization,essential.service,,,,"Authenticate users to the product, service, application or system." +essential.service.notifications,True,,False,,Essential Service Notifications,default_organization,essential.service,,,,"Sends notifications about the product, service, application or system." +essential.service.operations,True,,False,,Essential for Service Operations,default_organization,essential.service,,,,"Ensures the operation of the product, service, application or system." +essential.service.payment_processing,True,,False,,Essential for Service Payment Processing,default_organization,essential.service,,,,"Processes payments for the product, service, application or system." +essential.service.upgrades,True,,False,,Essential for Service Upgrades,default_organization,essential.service,,,,Provides timely system upgrade information options. +essential.service.notifications.email,True,,False,,Essential Email Service Notifications,default_organization,essential.service.notifications,,,,"Sends email notifications about the product, service, application or system." +essential.service.notifications.sms,True,,False,,Essential SMS Service Notifications,default_organization,essential.service.notifications,,,,"Sends SMS notifications about the product, service, application or system." +essential.service.operations.support,True,,False,,Essential for Serivce Operations Support,default_organization,essential.service.operations,,,,"Provides support for the product, service, application or system." +essential.service.operations.support.optimization,True,,False,,Essential for Serivce Support Optimization,default_organization,essential.service.operations.support,,,,"Optimizes and improves support for the product, service, application or system." +finance,True,,False,,Finance,default_organization,data_use,,,,Enables finance and accounting activities such as audits and tax reporting. +improve,True,,False,,"Improves the product, service, application or system.",default_organization,data_use,,,,"Improve the product, service, application or system." +improve.system,True,,False,,System,default_organization,improve,,,,"Improves the specific product, service, application or system." +marketing,True,,False,,Marketing,default_organization,data_use,,,,"Enables marketing, promotion, advertising and sales activities for the product, service, application or system." +marketing.advertising,True,,False,,"Advertising, Marketing or Promotion",default_organization,marketing,,,,"Advertises or promotes the product, service, application or system and associated services." +marketing.communications,True,,False,,Marketing Communications,default_organization,marketing,,,,"Uses combined channels to message and market to a customer, user or prospect." +marketing.advertising.first_party,True,,False,,First Party Advertising,default_organization,marketing.advertising,,,,Serves advertisements based on first party data collected or derived about the user. +marketing.advertising.frequency_capping,True,,False,,Frequency Capping,default_organization,marketing.advertising,,,,Restricts the number of times a specific advertisement is shown to an individual. +marketing.advertising.negative_targeting,True,,False,,Negative Targeting,default_organization,marketing.advertising,,,,Enforces rules used to ensure a certain audience or group is not targeted by advertising. +marketing.advertising.third_party,True,,False,,Third Party Advertising,default_organization,marketing.advertising,,,,Serves advertisements based on data within the system or joined with data provided by 3rd parties. +marketing.advertising.first_party.contextual,True,,False,,First Party Contextual Advertising,default_organization,marketing.advertising.first_party,,,,Serves advertisements based on current content being viewed by the user of the system or service. +marketing.advertising.first_party.targeted,True,,False,,First Party Personalized Advertising,default_organization,marketing.advertising.first_party,,,,Targets advertisements based on data collected or derived about the user from use of the system. +marketing.advertising.third_party.targeted,True,,False,,Third Party Targeted Advertising,default_organization,marketing.advertising.third_party,,,,Targets advertisements based on data within the system or joined with data provided by 3rd parties. +marketing.communications.email,True,,False,,Marketing Email Communications,default_organization,marketing.communications,,,,Sends email marketing communications. +marketing.communications.sms,True,,False,,Marketing SMS Communications,default_organization,marketing.communications,,,,Sends SMS marketing communications. +operations,True,,False,,Operations,default_organization,data_use,,,,Supports business processes necessary to the organization's operation. +personalize,True,,False,,Personalize,default_organization,data_use,,,,"Personalizes the product, service, application or system." +personalize.content,True,,False,,Content Personalization,default_organization,personalize,,,,"Personalizes the content of the product, service, application or system." +personalize.system,True,,False,,System Personalization,default_organization,personalize,,,,"Personalizes the product, service, application or system." +sales,True,,False,,Sales,default_organization,data_use,,,,Supports sales activities such as communications and outreach. +third_party_sharing,True,,False,,Third Party Sharing,default_organization,data_use,,,,Transfers data to third parties outside of the system or service's scope. +third_party_sharing.legal_obligation,True,,False,,Sharing for Legal Obligation,default_organization,third_party_sharing,,,,"Shares data for legal obligations, including contracts, applicable laws or regulations." +train_ai_system,True,,False,,Train AI System,default_organization,data_use,,,,Trains an AI system or data model for machine learning. diff --git a/mkdocs/docs/js/vis.js b/mkdocs/docs/js/vis.js index 0f59d13c..063d4fb2 100644 --- a/mkdocs/docs/js/vis.js +++ b/mkdocs/docs/js/vis.js @@ -44,6 +44,10 @@ var VisTooltip = class VisTooltip { const content = `
${accessor.name(d.data)}
+
+
Fides Key:
+ ${accessor.id(d.data)} +
Hierarchy:
${accessor @@ -724,6 +728,7 @@ var VisTree = class VisTree { } } + Promise.all([ d3.csv("csv/data_categories.csv"), d3.csv("csv/data_uses.csv"), @@ -736,28 +741,34 @@ Promise.all([ categories: d3 .scaleOrdinal() .domain([ - "Data Category", - "System Data", - "User Data", + "data_category", + "system", + "user", ]) .range([ + "#2a3045", "#0861ce", "#8459cc", - "#c14cbb", ]), uses: d3 .scaleOrdinal() .domain([ - "Data Use", - "Provide the capability", - "Improve the capability", - "Personalize the capability", - "Advertising, Marketing or Promotion", - "Third Party Sharing", - "Collect", - "Train AI System", + "data_use", + "analytics", + "collect", + "employment", + "essential", + "finance", + "improve", + "marketing", + "operations", + "personalize", + "sales", + "third_party_sharing", + "train_ai_system", ]) .range([ + "#2a3045", "#0861ce", "#8459cc", "#c14cbb", @@ -766,28 +777,33 @@ Promise.all([ "#ff635b", "#ff8436", "#ffa600", + "#ffcf40", + "#acff40", + "#58ff40", + "#52cf70", ]), subjects: d3 .scaleOrdinal() .domain([ - "Data Subject", - "Anonymous User", - "Citizen Voter", - "Commuter", - "Consultant", - "Custom", - "Employee", - "Job Applicant", - "Next of Kin", - "Passenger", - "Patient", - "Prospect", - "Shareholder", - "Supplier/Vendor", - "Trainee", - "Visitor", + "data_subject", + "anonymous_user", + "citizen_voter", + "commuter", + "consultant", + "customer", + "employee", + "job_applicant", + "next_of_kin", + "passenger", + "patient", + "prospect", + "shareholder", + "supplier_vendor", + "trainee", + "visitor", ]) .range([ + "#2a3045", "#0861ce", "#ff7040", "#ffa040", @@ -803,44 +819,37 @@ Promise.all([ "#c93ffd", "#f73ffc", "#fb409e", - "#fd406f", ]), qualifiers: d3 .scaleOrdinal() .domain([ - "Data Qualifier", - "Identified Data", - "Pseudonymized Data", - "Unlinked Pseudonymized Data", - "Anonymized Data", - "Aggregated Data", + "data_qualifier", + "aggregated", + "aggregated.anonymized", + "aggregated.anonymized.unlinked_pseudonymized", + "aggregated.anonymized.unlinked_pseudonymized.pseudonymized", + "aggregated.anonymized.unlinked_pseudonymized.pseudonymized.identified", ]) .range([ + "#2a3045", "#0861ce", "#8459cc", "#c14cbb", "#ed43a0", "#ff4a7f", - "#ffa600", ]), }; - const elColorLegend = document.querySelector("#vis-color-legend"); - - const colorLegend = new VisColorLegend({ - el: elColorLegend, - }); - const accessor = { - id: (d) => d.privacy_key, + id: (d) => d.fides_key, parentId: (d) => d.parent_key, name: (d) => - d.privacy_key - .slice(d.privacy_key.lastIndexOf(".") + 1) + d.fides_key + .slice(d.fides_key.lastIndexOf(".") + 1) .split("_") .map((d) => d[0].toUpperCase() + d.slice(1)) .join(" "), - colorKey: (d) => d.name, + colorKey: (d) => d.fides_key, description: (d) => d.description, }; @@ -868,7 +877,6 @@ Promise.all([ selected.chartData = event.currentTarget.dataset.chartData; const data = chartData[selected.chartData].copy(); const color = colors[selected.chartData].copy(); - colorLegend.updateScale(color); chart[selected.chartType].updateData({ data, color, @@ -915,7 +923,6 @@ Promise.all([ } const data = chartData[selected.chartData].copy(); const color = colors[selected.chartData].copy(); - colorLegend.updateScale(color); chart[selected.chartType].updateData({ data, color, diff --git a/mkdocs/docs/js/vis2.js b/mkdocs/docs/js/vis2.js index b3a60651..c06794c8 100644 --- a/mkdocs/docs/js/vis2.js +++ b/mkdocs/docs/js/vis2.js @@ -44,6 +44,10 @@ var VisTooltip = class VisTooltip { const content = `
${accessor.name(d.data)}
+
+
Fides Key:
+ ${accessor.id(d.data)} +
Hierarchy:
${accessor @@ -737,28 +741,34 @@ Promise.all([ categories: d3 .scaleOrdinal() .domain([ - "Data Category", - "System Data", - "User Data", + "data_category", + "system", + "user", ]) .range([ + "#2a3045", "#0861ce", "#8459cc", - "#c14cbb", ]), uses: d3 .scaleOrdinal() .domain([ - "Data Use", - "Provide the capability", - "Improve the capability", - "Personalize the capability", - "Advertising, Marketing or Promotion", - "Third Party Sharing", - "Collect", - "Train AI System", + "data_use", + "analytics", + "collect", + "employment", + "essential", + "finance", + "improve", + "marketing", + "operations", + "personalize", + "sales", + "third_party_sharing", + "train_ai_system", ]) .range([ + "#2a3045", "#0861ce", "#8459cc", "#c14cbb", @@ -767,28 +777,33 @@ Promise.all([ "#ff635b", "#ff8436", "#ffa600", + "#ffcf40", + "#acff40", + "#58ff40", + "#52cf70", ]), subjects: d3 .scaleOrdinal() .domain([ - "Data Subject", - "Anonymous User", - "Citizen Voter", - "Commuter", - "Consultant", - "Custom", - "Employee", - "Job Applicant", - "Next of Kin", - "Passenger", - "Patient", - "Prospect", - "Shareholder", - "Supplier/Vendor", - "Trainee", - "Visitor", + "data_subject", + "anonymous_user", + "citizen_voter", + "commuter", + "consultant", + "customer", + "employee", + "job_applicant", + "next_of_kin", + "passenger", + "patient", + "prospect", + "shareholder", + "supplier_vendor", + "trainee", + "visitor", ]) .range([ + "#2a3045", "#0861ce", "#ff7040", "#ffa040", @@ -804,44 +819,37 @@ Promise.all([ "#c93ffd", "#f73ffc", "#fb409e", - "#fd406f", ]), qualifiers: d3 .scaleOrdinal() .domain([ - "Data Qualifier", - "Identified Data", - "Pseudonymized Data", - "Unlinked Pseudonymized Data", - "Anonymized Data", - "Aggregated Data", + "data_qualifier", + "aggregated", + "aggregated.anonymized", + "aggregated.anonymized.unlinked_pseudonymized", + "aggregated.anonymized.unlinked_pseudonymized.pseudonymized", + "aggregated.anonymized.unlinked_pseudonymized.pseudonymized.identified", ]) .range([ + "#2a3045", "#0861ce", "#8459cc", "#c14cbb", "#ed43a0", "#ff4a7f", - "#ffa600", ]), }; - const elColorLegend = document.querySelector("#vis-color-legend"); - - const colorLegend = new VisColorLegend({ - el: elColorLegend, - }); - const accessor = { - id: (d) => d.privacy_key, + id: (d) => d.fides_key, parentId: (d) => d.parent_key, name: (d) => - d.privacy_key - .slice(d.privacy_key.lastIndexOf(".") + 1) + d.fides_key + .slice(d.fides_key.lastIndexOf(".") + 1) .split("_") .map((d) => d[0].toUpperCase() + d.slice(1)) .join(" "), - colorKey: (d) => d.name, + colorKey: (d) => d.fides_key, description: (d) => d.description, }; @@ -869,7 +877,6 @@ Promise.all([ selected.chartData = event.currentTarget.dataset.chartData; const data = chartData[selected.chartData].copy(); const color = colors[selected.chartData].copy(); - colorLegend.updateScale(color); chart[selected.chartType].updateData({ data, color, @@ -916,7 +923,6 @@ Promise.all([ } const data = chartData[selected.chartData].copy(); const color = colors[selected.chartData].copy(); - colorLegend.updateScale(color); chart[selected.chartType].updateData({ data, color, diff --git a/mkdocs/mkdocs.yml b/mkdocs/mkdocs.yml index 208d33ef..cae7cf78 100644 --- a/mkdocs/mkdocs.yml +++ b/mkdocs/mkdocs.yml @@ -3,8 +3,7 @@ site_url: https://ethyca.github.io/fideslang nav: - Fides: https://ethyca.github.io/fides/ - - Fides UI: https://ethyca.github.io/fides/ui/overview/ - - Fides Lang: + - Fideslang: - What is Fideslang?: index.md - Overview: overview.md - Fideslang Visual Explorer: explorer.md diff --git a/scripts/export_default_taxonomy.py b/scripts/export_default_taxonomy.py new file mode 100644 index 00000000..eb83b3af --- /dev/null +++ b/scripts/export_default_taxonomy.py @@ -0,0 +1,126 @@ +""" +Export the Default Fideslang Taxonomy as YAML, JSON and CSV files. +""" +import csv +import json +import shutil +import yaml +from fideslang import DEFAULT_TAXONOMY +from fideslang.manifests import write_manifest +from typing import Tuple + +FILE_RESOURCE_PAIRS: Tuple[Tuple[str, str], ...] = ( + ("data_categories", "data_category"), + ("data_subjects", "data_subject"), + ("data_qualifiers", "data_qualifier"), + ("data_uses", "data_use"), +) +DATA_DIR = "data_files" +DOCS_CSV_DIR = "mkdocs/docs/csv" + + +def export_yaml() -> None: + """ + Export the default Taxonomy as YAML files. + """ + + for filename, resource_type in FILE_RESOURCE_PAIRS: + output_filename = f"{DATA_DIR}/{filename}.yml" + print(f"> Writing YAML to {output_filename}") + write_manifest( + output_filename, + manifest=[x.dict() for x in getattr(DEFAULT_TAXONOMY, resource_type)], + resource_type=resource_type, + ) + + +def export_json() -> None: + """ + Load the default Taxonomy from their YAML files and re-export as JSON. + """ + for filename, _ in FILE_RESOURCE_PAIRS: + input_filename = f"{DATA_DIR}/{filename}.yml" + json_filename = input_filename.replace("yml", "json") + + with open(input_filename, "r") as input_file: + print(f"> Loading YAML from {input_filename}...") + yaml_dict = yaml.safe_load(input_file) + with open(json_filename, "w") as json_file: + print(f"> Writing JSON to {json_filename}...") + json_str = json.dumps(yaml_dict, indent=4) + print(json_str, file=json_file) + + +def export_csv() -> None: + for filename, _ in FILE_RESOURCE_PAIRS: + input_filename = f"{DATA_DIR}/{filename}.yml" + csv_filename = input_filename.replace("yml", "csv") + docs_filename = f"{DOCS_CSV_DIR}/{filename}.csv" + + # Load the Taxonomy from the YAML file + with open(input_filename, "r") as input_file: + print(f"> Loading YAML from {input_filename}...") + yaml_dict = yaml.safe_load(input_file) + + with open(csv_filename, "w") as csv_file: + print(f"> Writing csv to {csv_filename}...") + assert len(yaml_dict.keys()) == 1 # should only have a single top-level key + toplevel_key = next(iter(yaml_dict)) + + # Compute a unique set of keys used across all the sub-items + list_of_keys = [item.keys() for item in yaml_dict[toplevel_key]] + flattened_keys = [keys for sublist in list_of_keys for keys in sublist] + unique_keys = sorted(list(set(flattened_keys))) + + # Insert the parent_key if not defined + if "parent_key" not in unique_keys: + unique_keys.append("parent_key") + + # Write out the CSV file headers. Put "description" last, for readability + if "description" in unique_keys: + unique_keys.remove("description") + unique_keys.append("description") + + print(f"Headers: {unique_keys}") + csv_writer = csv.DictWriter(csv_file, fieldnames=unique_keys) + csv_writer.writeheader() + + # For visualizing as a hierarchy, generate a virtual "root" node to be a single parent + assert {"fides_key", "name", "parent_key"}.issubset( + unique_keys + ), "Missing required keys for CSV!" + root_key = toplevel_key.replace("-", "_") + root_name = " ".join([word.capitalize() for word in root_key.split("_")]) + root_node = {"fides_key": root_key, "name": root_name} + print(f"Generating root node: {root_node}...") + csv_writer.writerow(root_node) + + for item in yaml_dict[toplevel_key]: + if item.get("parent_key", None) is not None: + # Write out the item normally if it has a parent + csv_writer.writerow(item) + else: + # Insert the new "root" node for items that are top-level nodes + new_item = {"parent_key": root_key} + item.update(new_item) + print(f"Edited parent for {item['fides_key']}") + csv_writer.writerow(item) + + print(f"> Copying csv to docs site at {docs_filename}...") + shutil.copy(csv_filename, docs_filename) + + +if __name__ == "__main__": + print("Exporting YAML files...") + export_yaml() + print("*" * 40) + + print("Exporting JSON files...") + export_json() + print("*" * 40) + + print("Exporting JSON files...") + export_csv() + print("*" * 40) + + print(f"Export complete! Check '{DATA_DIR}/' for output files.") diff --git a/src/fideslang/default_taxonomy/__init__.py b/src/fideslang/default_taxonomy/__init__.py index 6160699d..47937331 100644 --- a/src/fideslang/default_taxonomy/__init__.py +++ b/src/fideslang/default_taxonomy/__init__.py @@ -8,10 +8,14 @@ from .data_uses import DEFAULT_DATA_USES from .organizations import DEFAULT_ORGANIZATIONS +sort_data_types = ( + lambda x: x.parent_key if hasattr(x, "parent_key") and x.parent_key else x.fides_key +) + DEFAULT_TAXONOMY = Taxonomy( - data_category=DEFAULT_DATA_CATEGORIES, - data_qualifier=DEFAULT_DATA_QUALIFIERS, - data_subject=DEFAULT_DATA_SUBJECTS, - data_use=DEFAULT_DATA_USES, + data_category=sorted(DEFAULT_DATA_CATEGORIES, key=sort_data_types), + data_qualifier=sorted(DEFAULT_DATA_QUALIFIERS, key=sort_data_types), + data_subject=sorted(DEFAULT_DATA_SUBJECTS, key=sort_data_types), + data_use=sorted(DEFAULT_DATA_USES, key=sort_data_types), organization=DEFAULT_ORGANIZATIONS, ) diff --git a/src/fideslang/default_taxonomy/data_qualifiers.py b/src/fideslang/default_taxonomy/data_qualifiers.py index f08f4464..4d5b73d1 100644 --- a/src/fideslang/default_taxonomy/data_qualifiers.py +++ b/src/fideslang/default_taxonomy/data_qualifiers.py @@ -1,50 +1,44 @@ -from fideslang.models import DataQualifier, FidesKey +from fideslang.models import DataQualifier DEFAULT_DATA_QUALIFIERS = [ DataQualifier( - fides_key=FidesKey("aggregated"), - organization_fides_key=FidesKey("default_organization"), + fides_key="aggregated", + organization_fides_key="default_organization", name="Aggregated Data", description="Statistical data that does not contain individually identifying information but includes information about groups of individuals that renders individual identification impossible.", parent_key=None, is_default=True, ), DataQualifier( - fides_key=FidesKey("aggregated.anonymized"), - organization_fides_key=FidesKey("default_organization"), + fides_key="aggregated.anonymized", + organization_fides_key="default_organization", name="Anonymized Data", description="Data where all attributes have been sufficiently altered that the individaul cannot be reidentified by this data or in combination with other datasets.", - parent_key=FidesKey("aggregated"), + parent_key="aggregated", is_default=True, ), DataQualifier( - fides_key=FidesKey("aggregated.anonymized.unlinked_pseudonymized"), - organization_fides_key=FidesKey("default_organization"), + fides_key="aggregated.anonymized.unlinked_pseudonymized", + organization_fides_key="default_organization", name="Unlinked Pseudonymized Data", description="Data for which all identifiers have been substituted with unrelated values and linkages broken such that it may not be reversed, even by the party that performed the pseudonymization.", - parent_key=FidesKey("aggregated.anonymized"), + parent_key="aggregated.anonymized", is_default=True, ), DataQualifier( - fides_key=FidesKey( - "aggregated.anonymized.unlinked_pseudonymized.pseudonymized" - ), - organization_fides_key=FidesKey("default_organization"), + fides_key="aggregated.anonymized.unlinked_pseudonymized.pseudonymized", + organization_fides_key="default_organization", name="Pseudonymized Data", description="Data for which all identifiers have been substituted with unrelated values, rendering the individual unidentifiable and cannot be reasonably reversed other than by the party that performed the pseudonymization.", - parent_key=FidesKey("aggregated.anonymized.unlinked_pseudonymized"), + parent_key="aggregated.anonymized.unlinked_pseudonymized", is_default=True, ), DataQualifier( - fides_key=FidesKey( - "aggregated.anonymized.unlinked_pseudonymized.pseudonymized.identified" - ), - organization_fides_key=FidesKey("default_organization"), + fides_key="aggregated.anonymized.unlinked_pseudonymized.pseudonymized.identified", + organization_fides_key="default_organization", name="Identified Data", description="Data that directly identifies an individual.", - parent_key=FidesKey( - "aggregated.anonymized.unlinked_pseudonymized.pseudonymized" - ), + parent_key="aggregated.anonymized.unlinked_pseudonymized.pseudonymized", is_default=True, ), ] diff --git a/src/fideslang/default_taxonomy/data_uses.py b/src/fideslang/default_taxonomy/data_uses.py index b80f3863..ec789ae9 100644 --- a/src/fideslang/default_taxonomy/data_uses.py +++ b/src/fideslang/default_taxonomy/data_uses.py @@ -1,58 +1,200 @@ from fideslang.models import DataUse DEFAULT_DATA_USES = [ + # Analytics DataUse( - fides_key="provide", + fides_key="analytics", organization_fides_key="default_organization", - name="Provide the capability", - description="Provide, give, or make available the product, service, application or system.", + name="Analytics", + description="Provides analytics for activities such as system and advertising performance reporting, insights and fraud detection.", parent_key=None, is_default=True, ), DataUse( - fides_key="provide.service", + fides_key="analytics.reporting", organization_fides_key="default_organization", - name="Service", - description="The source service, system, or product being provided to the user.", - parent_key="provide", + name="Analytics for Reporting", + description="Provides analytics for general reporting such as system and advertising performance.", + parent_key="analytics", is_default=True, ), DataUse( - fides_key="provide.service.operations", + fides_key="analytics.reporting.ad_performance", organization_fides_key="default_organization", - name="Service Operations", - description="Use of specified data categories to operate and protect in order to provide the service.", - parent_key="provide.service", + name="Analytics for Advertising Performance", + description="Provides analytics for reporting of advertising performance.", + parent_key="analytics.reporting", is_default=True, ), DataUse( - fides_key="provide.service.operations.support", + fides_key="analytics.reporting.campaign_insights", organization_fides_key="default_organization", - name="Operations Support", - description="Use of specified data categories to provide support for operation and protection in order to provide the service.", - parent_key="provide.service.operations", + name="Analytics for Insights", + description="Provides analytics for reporting of campaign insights related to advertising and promotion activities.", + parent_key="analytics.reporting", is_default=True, ), DataUse( - fides_key="provide.service.operations.support.optimization", + fides_key="analytics.reporting.system", organization_fides_key="default_organization", - name="Support Optimization", - description="Use of specified data categories to optimize and improve support operations in order to provide the service.", - parent_key="provide.service.operations.support", + name="Analytics for System Activity", + description="Provides analytics for reporting on system activity.", + parent_key="analytics.reporting", is_default=True, ), DataUse( - fides_key="provide.service.upgrades", + fides_key="analytics.reporting.system.performance", organization_fides_key="default_organization", - name="Offer Upgrades", - description="Offer upgrades or upsales such as increased capacity for the service based on monitoring of service usage.", - parent_key="provide.service", + name="Analytics for System Performance", + description="Provides analytics for reporting on system performance.", + parent_key="analytics.reporting.system", is_default=True, ), + # Collect + DataUse( + fides_key="collect", + organization_fides_key="default_organization", + name="Collect", + description="Collects or stores data in order to use it for another purpose which has not yet been expressly defined.", + parent_key=None, + is_default=True, + ), + # Employment + DataUse( + fides_key="employment", + name="Employment", + organization_fides_key="default_organization", + description="Processes data for the purpose of recruitment or employment and human resources (HR) related activities.", + parent_key=None, + is_default=True, + ), + DataUse( + fides_key="employment.recruitment", + name="Employment Recruitment", + organization_fides_key="default_organization", + description="Processes data of prospective employees for the purpose of recruitment.", + parent_key="employment", + is_default=True, + ), + # Essential + DataUse( + fides_key="essential", + name="Essential", + description="Operates the service or product, including legal obligations, support and basic system operations.", + organization_fides_key="default_organization", + parent_key=None, + is_default=True, + ), + DataUse( + fides_key="essential.fraud_detection", + organization_fides_key="default_organization", + name="Essential Fraud Detection", + description="Detects possible fraud or misuse of the product, service, application or system.", + parent_key="essential", + is_default=True, + ), + DataUse( + fides_key="essential.legal_obligation", + organization_fides_key="default_organization", + name="Essential Legal Obligation", + description="Provides service to meet a legal or compliance obligation such as consent management.", + parent_key="essential", + is_default=True, + ), + DataUse( + fides_key="essential.service", + organization_fides_key="default_organization", + name="Essential for Service", + description="Provides the essential product, service, application or system, without which the product/service would not be possible.", + parent_key="essential", + is_default=True, + ), + DataUse( + fides_key="essential.service.authentication", + organization_fides_key="default_organization", + name="Essential Service Authentication", + description="Authenticate users to the product, service, application or system.", + parent_key="essential.service", + is_default=True, + ), + DataUse( + fides_key="essential.service.notifications", + organization_fides_key="default_organization", + name="Essential Service Notifications", + description="Sends notifications about the product, service, application or system.", + parent_key="essential.service", + is_default=True, + ), + DataUse( + fides_key="essential.service.notifications.email", + organization_fides_key="default_organization", + name="Essential Email Service Notifications", + description="Sends email notifications about the product, service, application or system.", + parent_key="essential.service.notifications", + is_default=True, + ), + DataUse( + fides_key="essential.service.notifications.sms", + organization_fides_key="default_organization", + name="Essential SMS Service Notifications", + description="Sends SMS notifications about the product, service, application or system.", + parent_key="essential.service.notifications", + is_default=True, + ), + DataUse( + fides_key="essential.service.operations", + organization_fides_key="default_organization", + name="Essential for Service Operations", + description="Ensures the operation of the product, service, application or system.", + parent_key="essential.service", + is_default=True, + ), + DataUse( + fides_key="essential.service.operations.support", + organization_fides_key="default_organization", + name="Essential for Serivce Operations Support", + description="Provides support for the product, service, application or system.", + parent_key="essential.service.operations", + is_default=True, + ), + DataUse( + fides_key="essential.service.operations.support.optimization", + name="Essential for Serivce Support Optimization", + description="Optimizes and improves support for the product, service, application or system.", + parent_key="essential.service.operations.support", + organization_fides_key="default_organization", + is_default=True, + ), + DataUse( + fides_key="essential.service.payment_processing", + name="Essential for Service Payment Processing", + description="Processes payments for the product, service, application or system.", + parent_key="essential.service", + organization_fides_key="default_organization", + is_default=True, + ), + DataUse( + fides_key="essential.service.upgrades", + name="Essential for Service Upgrades", + description="Provides timely system upgrade information options.", + parent_key="essential.service", + organization_fides_key="default_organization", + is_default=True, + ), + # Finance + DataUse( + fides_key="finance", + name="Finance", + organization_fides_key="default_organization", + description="Enables finance and accounting activities such as audits and tax reporting.", + parent_key=None, + is_default=True, + ), + # Improve DataUse( fides_key="improve", organization_fides_key="default_organization", - name="Improve the capability", + name="Improves the product, service, application or system.", description="Improve the product, service, application or system.", parent_key=None, is_default=True, @@ -61,127 +203,173 @@ fides_key="improve.system", organization_fides_key="default_organization", name="System", - description="The source system, product, service or application being improved.", + description="Improves the specific product, service, application or system.", parent_key="improve", is_default=True, ), + # Marketing DataUse( - fides_key="personalize", + fides_key="marketing", organization_fides_key="default_organization", - name="Personalize the capability", - description="Personalize the product, service, application or system.", + name="Marketing", + description="Enables marketing, promotion, advertising and sales activities for the product, service, application or system.", parent_key=None, is_default=True, ), DataUse( - fides_key="personalize.system", + fides_key="marketing.advertising", organization_fides_key="default_organization", - name="System", - description="The source system, product, service or application being personalized.", - parent_key="personalize", + name="Advertising, Marketing or Promotion", + description="Advertises or promotes the product, service, application or system and associated services.", + parent_key="marketing", is_default=True, ), DataUse( - fides_key="advertising", + fides_key="marketing.advertising.first_party", organization_fides_key="default_organization", - name="Advertising, Marketing or Promotion", - description="The promotion of products or services targeted to users based on the the processing of user provided data in the system.", - parent_key=None, + name="First Party Advertising", + description="Serves advertisements based on first party data collected or derived about the user.", + parent_key="marketing.advertising", is_default=True, ), DataUse( - fides_key="advertising.first_party", + fides_key="marketing.advertising.first_party.contextual", + organization_fides_key="default_organization", + name="First Party Contextual Advertising", + description="Serves advertisements based on current content being viewed by the user of the system or service.", + parent_key="marketing.advertising.first_party", + is_default=True, + ), + DataUse( + fides_key="marketing.advertising.first_party.targeted", + organization_fides_key="default_organization", + name="First Party Personalized Advertising", + description="Targets advertisements based on data collected or derived about the user from use of the system.", + parent_key="marketing.advertising.first_party", + is_default=True, + ), + DataUse( + fides_key="marketing.advertising.frequency_capping", + name="Frequency Capping", + description="Restricts the number of times a specific advertisement is shown to an individual.", + parent_key="marketing.advertising", + organization_fides_key="default_organization", + is_default=True, + ), + DataUse( + fides_key="marketing.advertising.negative_targeting", + name="Negative Targeting", + description="Enforces rules used to ensure a certain audience or group is not targeted by advertising.", + parent_key="marketing.advertising", organization_fides_key="default_organization", - name="First Party Advertising", - description="The promotion of products or services targeting users based on processing of derviced data from prior use of the system.", - parent_key="advertising", is_default=True, ), DataUse( - fides_key="advertising.third_party", + fides_key="marketing.advertising.third_party", organization_fides_key="default_organization", name="Third Party Advertising", - description="The promotion of products or services targeting users based on processing of specific categories of data acquired from third party sources.", - parent_key="advertising", + description="Serves advertisements based on data within the system or joined with data provided by 3rd parties.", + parent_key="marketing.advertising", is_default=True, ), DataUse( - fides_key="advertising.first_party.contextual", + fides_key="marketing.advertising.third_party.targeted", organization_fides_key="default_organization", - name="First Party Contextual Advertising", - description="The promotion of products or services targeted to users based on the processing of data from the users prior use of the services.", - parent_key="advertising.first_party", + name="Third Party Targeted Advertising", + description="Targets advertisements based on data within the system or joined with data provided by 3rd parties.", + parent_key="marketing.advertising.third_party", is_default=True, ), DataUse( - fides_key="advertising.first_party.personalized", + fides_key="marketing.communications", organization_fides_key="default_organization", - name="First Party Personalized Advertising", - description="The targeting and changing of promotional content based on processing of specific data categories from the user.", - parent_key="advertising.first_party", + name="Marketing Communications", + description="Uses combined channels to message and market to a customer, user or prospect.", + parent_key="marketing", is_default=True, ), DataUse( - fides_key="advertising.third_party.personalized", + fides_key="marketing.communications.email", organization_fides_key="default_organization", - name="Third Party Personalized Advertising", - description="The targeting and changing of promotional content based on processing of specific categories of user data acquired from third party sources.", - parent_key="advertising.third_party", + name="Marketing Email Communications", + description="Sends email marketing communications.", + parent_key="marketing.communications", is_default=True, ), DataUse( - fides_key="third_party_sharing", + fides_key="marketing.communications.sms", organization_fides_key="default_organization", - name="Third Party Sharing", - description="The transfer of specified data categories to third parties outside of the system/application's scope.", + name="Marketing SMS Communications", + description="Sends SMS marketing communications.", + parent_key="marketing.communications", + is_default=True, + ), + # Operations + DataUse( + fides_key="operations", + name="Operations", + organization_fides_key="default_organization", + description="Supports business processes necessary to the organization's operation.", parent_key=None, is_default=True, ), + # Personalize DataUse( - fides_key="third_party_sharing.payment_processing", + fides_key="personalize", organization_fides_key="default_organization", - name="Sharing for Processing Payments", - description="Sharing of specified data categories with a third party for payment processing.", - parent_key="third_party_sharing", + name="Personalize", + description="Personalizes the product, service, application or system.", + parent_key=None, is_default=True, ), DataUse( - fides_key="third_party_sharing.personalized_advertising", + fides_key="personalize.content", organization_fides_key="default_organization", - name="Sharing for Personalized Advertising", - description="Sharing of specified data categories for the purpose of marketing/advertising/promotion.", - parent_key="third_party_sharing", + name="Content Personalization", + description="Personalizes the content of the product, service, application or system.", + parent_key="personalize", is_default=True, ), DataUse( - fides_key="third_party_sharing.fraud_detection", + fides_key="personalize.system", organization_fides_key="default_organization", - name="Sharing for Fraud Detection", - description="Sharing of specified data categories with a third party fo fraud prevention/detection.", - parent_key="third_party_sharing", + name="System Personalization", + description="Personalizes the product, service, application or system.", + parent_key="personalize", is_default=True, ), + # Sales DataUse( - fides_key="third_party_sharing.legal_obligation", + fides_key="sales", + name="Sales", organization_fides_key="default_organization", - name="Sharing for Legal Obligation", - description="Sharing of data for legal obligations, including contracts, applicable laws or regulations.", - parent_key="third_party_sharing", + description="Supports sales activities such as communications and outreach.", + parent_key=None, is_default=True, ), + # Third-Party Sharing DataUse( - fides_key="collect", + fides_key="third_party_sharing", organization_fides_key="default_organization", - name="Collect", - description="Collecting and storing data in order to use it for another purpose such as data training for ML.", + name="Third Party Sharing", + description="Transfers data to third parties outside of the system or service's scope.", parent_key=None, is_default=True, ), + DataUse( + fides_key="third_party_sharing.legal_obligation", + organization_fides_key="default_organization", + name="Sharing for Legal Obligation", + description="Shares data for legal obligations, including contracts, applicable laws or regulations.", + parent_key="third_party_sharing", + is_default=True, + ), + # Train AI System DataUse( fides_key="train_ai_system", organization_fides_key="default_organization", name="Train AI System", - description="Training an AI system. Please note when this data use is specified, the method and degree to which a user may be directly identified in the resulting AI system should be appended.", + description="Trains an AI system or data model for machine learning.", parent_key=None, is_default=True, ), diff --git a/src/fideslang/models.py b/src/fideslang/models.py index 294c888e..e7da2227 100644 --- a/src/fideslang/models.py +++ b/src/fideslang/models.py @@ -220,14 +220,17 @@ class DataSubject(FidesModel): class DataUse(FidesModel): """The DataUse resource model.""" - parent_key: Optional[FidesKey] + parent_key: Optional[FidesKey] = None legal_basis: Optional[LegalBasisEnum] = Field( + default=None, description="The legal basis category of which the data use falls under. This field is used as part of the creation of an exportable data map.", ) special_category: Optional[SpecialCategoriesEnum] = Field( + default=None, description="The special category for processing of which the data use falls under. This field is used as part of the creation of an exportable data map.", ) recipients: Optional[List[str]] = Field( + default=None, description="An array of recipients when sharing personal data outside of your organization.", ) legitimate_interest: bool = Field( @@ -235,6 +238,7 @@ class DataUse(FidesModel): description="A boolean representation of if the legal basis used is `Legitimate Interest`. Validated at run time and looks for a `legitimate_interest_impact_assessment` to exist if true.", ) legitimate_interest_impact_assessment: Optional[AnyUrl] = Field( + default=None, description="A url pointing to the legitimate interest impact assessment. Required if the legal bases used is legitimate interest.", ) is_default: bool = is_default_field diff --git a/tests/fideslang/test_default_taxonomy.py b/tests/fideslang/test_default_taxonomy.py index 34fa8a3d..4dfede3f 100644 --- a/tests/fideslang/test_default_taxonomy.py +++ b/tests/fideslang/test_default_taxonomy.py @@ -6,7 +6,7 @@ def test_category_count(self): assert len(DEFAULT_TAXONOMY.data_category) == 56 def test_use_count(self): - assert len(DEFAULT_TAXONOMY.data_use) == 23 + assert len(DEFAULT_TAXONOMY.data_use) == 45 def test_subject_count(self): assert len(DEFAULT_TAXONOMY.data_subject) == 15