Create a policy to protect Date of Birth (DOB)

Workflow example to protect DOB.

Goal

Create one policy that protects Date of Birth (DOB) using Datetime data element, with:

  • At least one role.
  • At least one member source feeding that role.
  • Deployed to at least one datastore.

This example provides a walkthrough of the complete workflow to create a policy to protect a Date of Birth (DOB). DOB is a common piece of sensitive personal data, and organizations typically protect it using datetime tokenization. This tokenization preserves the YYYY‑MM‑DD structure while preventing direct exposure of the original value. In this example, a single role is used whose members are obtained from an LDAP-based Member Source. The role is granted permission to protect (tokenize) DOB values.

For this walkthrough, a dedicated DOB data element is created using a date‑specific tokenizer, ensuring that the output maintains a valid date format for downstream systems. The role and data element are combined into a single policy. The policy is then deployed to a datastore so applications working with DOB information can enforce the protection rules at runtime.

Assumptions

To execute any CLI or API command in this example, the following assumptions have been made:

  • You are operating on a new AI Team Edition setup.
    • Set up the AI Team Edition by installing the Protegrity Provisioned Cluster. For more information about installing the PPC, refer to the section Installing PPC.
  • You are connected to the Policy Manager container.
    • Connect to the Policy Manager container by deploying the Protegrity Policy Manager. For more information about deploying the Protegrity Policy Manager, refer to the section Installing Policy Workbench.

CLI Examples

To execute any CLI command in this example, the following additional assumption has been made:

API Examples

To execute any API command in this example, the following additional assumption has been made:

  • You have access to the Protegrity Policy Management REST APIs.
Initialize Policy Management

Initialize the policy management.

Prepare Data Element

Prepare data element.

Create Member Source

Create member source.

Create Role

Create a role.

Assign Member Source to Role

Assign member source to a role.

Create Policy Shell

Create a policy shell.

Define Rule with Data Element and Role

Define a rule that includes the data element and role.

Create Datastore

Create a datastore.

Deploy Policy to Datastore

Deploy the policy to a datastore.

Confirm Deployment

Confirm the policy deployment.


Last modified : April 06, 2026