Sensitive information, e.g., Personal Identifi able Information (PII), Personal Health Information (PHI), and Credit or Debit card details from purchases (PCI) are a part of every organization’s databases. Allowing sensitive data from production applications to be copied and used for development and testing environments increases the risk of accidental or malicious internal data breaches. There are good reasons why project managers prefer to use the real production data when developing, testing or maintaining application code rather than mocked data-sets. Typically, real data provides a more exhaustive test bed eliminating more of the bugs prior to production release. However, there are risks and vulnerabilities associated with exposing real production data to both internal, external, local, and/or offshore developers. These include exposing intellectual property, sensitive data, and data that is subject to regulations, such as GDPR.
To see full report CLICK HERE.