Governance
Classify data, tag resources, and maintain audit trails.
Overview
Governance tools help you manage data sensitivity, track who did what, and enforce organizational policies. Navigate to Operate > Governance.
Data Classification
Assign classification levels to data sources, schemas, and pipelines:
| Level | Description |
|---|---|
| Public | Open data, no restrictions |
| Internal | For internal use only |
| Confidential | Restricted to authorized teams |
| Restricted | Highly sensitive, strict access controls |
| PII | Personally identifiable information, subject to privacy regulations |
Applying Classification
- Open any data source, schema, or pipeline
- Under Governance, select the classification level
- Classification is displayed as a badge throughout the UI
- Access controls can be tied to classification levels
Resource Tagging
Tag any resource with key-value pairs for organization and filtering:
environment: productionplant: houstonteam: data-engineeringcost-center: manufacturing
Managing Tags
- Open a resource
- Click Tags
- Add, edit, or remove key-value pairs
- Filter resource lists by tag in any list view
Audit Logs
All user actions are recorded in the audit log:
| Field | Description |
|---|---|
| Timestamp | When the action occurred |
| User | Who performed it |
| Action | What was done (create, update, delete, start, stop) |
| Resource | Which resource was affected |
| Details | Change details (before/after for updates) |
Viewing Audit Logs
Navigate to Operate > Governance > Audit Logs:
- Filter by user, action type, resource type, or date range
- Export logs as CSV for compliance reporting
- Audit logs are immutable and retained per your configured policy
User Activity
Track per-user activity summaries:
- Recent actions
- Resources owned
- Login history
Tenant Isolation
In multi-tenant deployments, governance ensures:
- Each tenant’s data is isolated at the database level
- Cross-tenant access is prevented
- Audit logs are scoped per tenant