Google Professional Data Engineer
Get started today
Ultimate access to all questions.
You manage a BigQuery table storing customer data, which includes sensitive information such as names and addresses. This data must be securely shared with both the data analytics and consumer support teams. The data analytics team should have access to the entire dataset but must be restricted from viewing sensitive information. Conversely, the consumer support team requires access to all data columns but should be limited to customers with active contracts only. You used an authorized dataset and policy tags to enforce these rules. However, the data analytics team has reported that they can still view the sensitive columns despite these precautions. To rectify this, what steps should you take to ensure the data analytics team is restricted from accessing sensitive information? (Choose two.)
You manage a BigQuery table storing customer data, which includes sensitive information such as names and addresses. This data must be securely shared with both the data analytics and consumer support teams. The data analytics team should have access to the entire dataset but must be restricted from viewing sensitive information. Conversely, the consumer support team requires access to all data columns but should be limited to customers with active contracts only. You used an authorized dataset and policy tags to enforce these rules. However, the data analytics team has reported that they can still view the sensitive columns despite these precautions. To rectify this, what steps should you take to ensure the data analytics team is restricted from accessing sensitive information? (Choose two.)
Explanation:
The correct answers are B and E. Option B ensures that the data analytics team members do not have the Data Catalog Fine-Grained Reader role for the policy tags, thereby preventing them from accessing sensitive columns. Option E involves enforcing access control in the policy tag taxonomy, ensuring the restrictions set by policy tags are properly applied. By combining these measures, you effectively restrict the data analytics team's access to sensitive data as required.