Security in HEDDA.IO
In a Data Quality (DQ) solution, it is crucial to implement a solid security architecture alongside the standard DQ functions.
Data is the backbone of any modern organization, and the quality of this data has a direct impact on business decisions and processes. However, without an adequate security architecture, data is vulnerable to unauthorized access, tampering and data loss. A robust security architecture ensures that data integrity and confidentiality are maintained by restricting access to authorized users and implementing safeguards against potential threats. This strengthens trust in the data and enables the organization to meet regulatory requirements and minimize business risks.
With HEDDA.IO, the implementation of a comprehensive security architecture is an integral part of our DQ solutions right from the start.
Security Features
Security in ensured by three key measures:
- Integration into the customer subscription: This ensures that all data processing and storage takes place within the customer environment, leaving data sovereignty entirely with the customer. Unlike other SaaS solutions, where data often has to leave the customer’s secure environment, HEDDA.IO guarantees that control and access to the data always remains in the hands of the customer. This significantly reduces the risk of data loss and unauthorized access and ensures that all of the customer’s security policies and compliance requirements can be met.
. - Complete integration into secure networks: We rely on the complete integration of our platform into secure networks within Azure. We utilize private endpoints to handle communication and data transfer exclusively via trusted and isolated network connections. These measures significantly minimize the attack surface and ensure that sensitive data always remains in a protected environment. By utilizing Azure’s robust security infrastructures, we provide our customers with the highest level of security and privacy for their data.
. - Microsoft Entra: For authentication, we employ Microsoft Entra, a powerful and reliable solution for identity and access management. This ensures that only verified users have data access and enables centralized and secure management of user identities and access rights.
Extension of the Microsoft Entra Integration
With our latest HEDDA.IO version, we have significantly expanded the integration in Microsoft Entra. In addition to user authentication via Microsoft Entra, we now also support authentication of the HEDDA.IO instance itself via Service Principals. This means that a separate Service Principal can be stored for each project, enabling the HEDDA.IO to securely and seamlessly authenticate to different Azure services.
This extension offers our customers even greater flexibility and security. When using Data Links in particular, HEDDA.IO can now utilize specific authorizations and access rights through the stored Service Principal. This enables finely tuned control and management of data access in line with the respective project requirements.
Tillmann Eitelberg
Tillmann Eitelberg is CEO and co-founder of oh22information services GmbH, which specializes in data management and data governance and offers its own cloud born data quality solution, HEDDA.IO.
Tillmann is a regular speaker at international conferences and an active blogger and podcaster at DECOMPOSE.IO.
He has open sourced several SSIS components and is Co-Author of Power BI for Dummies (German Edition). Since 2013 is Tillmann is awarded as Microsoft Data Platform MVP. He is a user group leader for the PASS Germany RG Rheinland (Cologne) and was a member of the Microsoft Azure Data Community Advisory Board.
