Skip to main content
Question

To protect client data, can I pseudonymize some credential data outside of Celonis before loading client-approved data into Celonis Cloud?

  • July 11, 2022
  • 7 replies
  • 22 views
G
Level 1
Forum|alt.badge.img+7
To protect client data, can I pseudonymize some credential data outside of Celonis before loading client-approved data into Celonis Cloud?

7 replies

.
Level 11

Hi @gary.pei ,

I believe that the pseudonymization is done at the source system by Celonis, so when you specify the fields to pseudonymize the data didn't reach the Celonis Cloud yet.

G
Level 1
Forum|alt.badge.img+7
  • gary.pei
  • Author
  • Level 1
  • July 12, 2022

Hi @gary.pei ,

I believe that the pseudonymization is done at the source system by Celonis, so when you specify the fields to pseudonymize the data didn't reach the Celonis Cloud yet.

Hello Lorenco/Celopeers: Can the client pseudonymize their credential data at their source system by themselves? Or must it be done by Celonis? The point is that the client does not want to show the specified fields/data to any third party even before the data reach Celonis. Could you please provide me the ‘know-how’ document or the link to Celonis Library for me to show my client how to pseudonymize by themselves, if possible? One more question: Can my client restore/reidentify the Pseudonymized data to its original state during Celonis process analysis, Root cause analysis, etc.? If yes, please provide me with the documents as well. Thank you very much! Gary
.
Level 11
Hello Lorenco/Celopeers: Can the client pseudonymize their credential data at their source system by themselves? Or must it be done by Celonis? The point is that the client does not want to show the specified fields/data to any third party even before the data reach Celonis. Could you please provide me the ‘know-how’ document or the link to Celonis Library for me to show my client how to pseudonymize by themselves, if possible? One more question: Can my client restore/reidentify the Pseudonymized data to its original state during Celonis process analysis, Root cause analysis, etc.? If yes, please provide me with the documents as well. Thank you very much! Gary

@gary.pei ,

 

I believe that normally to do that they would have to upload the data with pseudonymization to some other platform and then you can extract it from there. Then it really depends on the source system, some of them allow for an export with pseudonymization. https://docs.celonis.com/en/extractions.html#UUID-a8c152e2-5bda-9a10-8bb0-d9e5f20a175e_id_Extractions-pseudonymizationPseudonymization

 

 

janpeter.van.d
Level 12
Forum|alt.badge.img+26

Hi @gary.pei,

 

If you use the Celonis SAP/JDBC Extractor that is installed on a server within the customer network, the data will be pseudonimized within the extractor and thus before it is loaded towards Celonis (see Attached image where the extractor is marked red). You can also use the extractor to extract data from a cloud application and then load it to Celonis.

 

If you have a direct cloud connection, the data will be pseudonimized within Celonis itself, but before it enters the data pool and thus is visible to end users (see General Overview (celonis.com)). However, it is possible that this does not comply with the security standards.

 

 

Hopefully this helps.

 

Kind regards,

Jan-peter

 

pseudonymization 

 

G
Level 1
Forum|alt.badge.img+7
  • gary.pei
  • Author
  • Level 1
  • July 13, 2022

Hi @gary.pei,

 

If you use the Celonis SAP/JDBC Extractor that is installed on a server within the customer network, the data will be pseudonimized within the extractor and thus before it is loaded towards Celonis (see Attached image where the extractor is marked red). You can also use the extractor to extract data from a cloud application and then load it to Celonis.

 

If you have a direct cloud connection, the data will be pseudonimized within Celonis itself, but before it enters the data pool and thus is visible to end users (see General Overview (celonis.com)). However, it is possible that this does not comply with the security standards.

 

 

Hopefully this helps.

 

Kind regards,

Jan-peter

 

pseudonymization 

 

Hello Jan-peter The client does not allow us to connect to the SAP database. From their SAP HANA, the data is sent to a data lake by snowflake, then sftp to cloud, then regularly uploaded to some other platform. Then we can extract their activity, customer, invoice, etc., excel files from there but need to pseudonymize some fields before Celonis. Have you had this kind of structure experience? Please advise your email address or Lorenco Ndoja’s if possible. Thank you, Gary
J
Level 7
Forum|alt.badge.img+10
Hello Jan-peter The client does not allow us to connect to the SAP database. From their SAP HANA, the data is sent to a data lake by snowflake, then sftp to cloud, then regularly uploaded to some other platform. Then we can extract their activity, customer, invoice, etc., excel files from there but need to pseudonymize some fields before Celonis. Have you had this kind of structure experience? Please advise your email address or Lorenco Ndoja’s if possible. Thank you, Gary

@1460067637 !

janpeter.van.d
Level 12
Forum|alt.badge.img+26
Hello Jan-peter The client does not allow us to connect to the SAP database. From their SAP HANA, the data is sent to a data lake by snowflake, then sftp to cloud, then regularly uploaded to some other platform. Then we can extract their activity, customer, invoice, etc., excel files from there but need to pseudonymize some fields before Celonis. Have you had this kind of structure experience? Please advise your email address or Lorenco Ndoja’s if possible. Thank you, Gary

Hi @gary.pei,

 

Unfortunately, I'm not familiar with this structure. We wrote once a Python script that can pseudononymize data from one data pool to another, but not before entering Celonis (except from the methods I mentioned above). Hopefully somebody else here has a clue!

Community Code of ConductAccessibility statement