Data Access - Classification & Retention Policies - Compliance

Classification & Access Rights

OWL's Classification & Access Rights module allows for the classification of data and setting up hierarchy access rights which involves organizing and categorizing data based on its sensitivity or importance and establishing levels of access rights according to a hierarchical structure. This process is critical for ensuring that information is appropriately protected, and access is granted only to authorized individuals based on their roles and responsibilities. 

Juvenile Compliance

Managing law enforcement records of a minor involves handling sensitive information with special consideration for the minor's age, privacy rights, and legal protections. Law enforcement agencies need to adhere to relevant laws and regulations to ensure the proper handling, storage, and access to records involving minors. OWL juvenile compliance module allows users to classify all records within OWL to meet these requirements.

Retention Policies

Setting up data retention policies with OWL involves defining guidelines for how long different types of records are retained, when they should be archived, and when they should be permanently deleted. These policies are crucial for managing data lifecycle, compliance with regulations, and optimizing storage resources. 

28 CFR Part 23

Title 28 of the Code of Federal Regulations (CFR) Part 23 sets forth the regulations regarding criminal intelligence systems maintained by criminal justice agencies. Compliance with 28 CFR Part 23 is crucial for maintaining the integrity, privacy, and security of criminal intelligence data. The OWL platform allows agencies to develop and adhere to data retention policies that align with the requirements of 28 CFR Part 23. Agencies can define the duration for which criminal intelligence data will be retained and implement secure and irreversible methods for the disposal of criminal intelligence data when it reaches the end of its retention period.

Compliance Frameworks

Meeting standards for data access in compliance with various regulations, including PII (Personally Identifiable Information), GLBA (Gramm-Leach-Bliley Act), DPPA (Driver's Privacy Protection Act), HIPAA (Health Insurance Portability and Accountability Act), HITECH (Health Information Technology for Economic and Clinical Health Act), FERTECG (Federal Employee and Contractor Trust Act) and other US or global compliance frameworks  involves implementing robust security measures and ensuring strict adherence to privacy and data protection requirements as well as the access to data attributes based on role types within the OWL platform.