Client: A mid-sized hospital in Boston

Business application: Processing  PII and PHI across their Hybrid Cloud

Problem faced: 

Our client is a Mid size hospital that has tons of sensitive data on their server. During business scale-up, they found a requirement for protecting PII and PHI to meet GDPR requirements. 

They opt for a solution to protect  PII, PHI, and other sensitive information on their hybrid server and delete records for customers who are inactive for long periods.

Solution

Pursuit Salesforce experts analyzed the requirement and implemented a Salesforce solution to help them comply with these scenarios by enabling REST APIs to find all these contexts, orchestrations, and recommendation reactions from customer data and act on it by exporting this data or deleting it. 

More precisely, Pursuit provided a customized solution for Data Masking for Salesforce Objects containing PII information. The Data Masking algorithm uses a mix of techniques to obfuscate PII information by using a combination of Substitute Names, Regular Expressions, 1-way and 2-way encryption mechanism, etc.  

The Pursuit team had implemented ML techniques on field names and data types to identify the object and fields containing the PII information.

Technologies used

Apex, REST API, Java 

Achievements

• 100% GDPR compliance
• 98% Enhanced data privacy and security for over 2700+ employees and customer data
• More visibility into unstructured data and clear audit trails that show which users are accessing data