Announcing Advanced User Permissions for Hightouch
Learn how you can start leveraging advanced access management features in Hightouch with role-based and label-based controls.
Kashish Gupta
July 27, 2022
5 minutes
project:marketing).
Advanced Access Control in Hightouch
Here are some ways these controls can be customized to solve business use cases:
- Process Enforcement: marketers can create audiences and syncs but cannot access raw data in sources and parent models.
- Visibility and Security: all users can view a critical sync, but only a select group can edit it.
- Data Hygiene: an ad-hoc set of models and syncs for a specific campaign only needs to be shared with the team working on the campaign.
- Resource Protection: a highly privileged Snowflake account can only be viewed by admins and the Hightouch system for syncing purposes.
Hightouch helps some of the largest companies in the world sync mission-critical data to their business tools. In such high-stakes environments, proper governance is key to protecting against unauthorized data access and user errors that can break the pipeline. With industry-leading granular role-based and label-based access controls, users can be confident that they won't be compromising on security or governance as they invite more users to collaborate.
Josh Curl
Co-Founder & CTO at Hightouch
An Example of How it Works
Let's say a large consumer enterprise wants to create an "Audience Collaborator" role for marketers who should be able to create Audiences but should not have the ability to change the underlying schema (model).
A workspace admin would create the two policies below:
Policy 1 — Lets user create audiences and syncs for the specific project tagged
- Actions: create, read, update, delete, preview, enable
- Resource: sync, audience, sync template
- Conditions: project is
demand-gen-prod
Policy 2 — Limits the user's ability to change the underlying schema
- Actions: read, preview
- Resource: audience schema
Currently, Hightouch supports these inputs through a JSON format. Soon, we will be releasing a UI for quicker configuration.
Below is the corresponding UI experience for the Audience Collaborator role as compared to the admin view.
Admin View
Audience Collaborator View
Our Governance Roadmap
With this launch, we're proud to stay on the leading edge of data governance for Reverse ETL platforms. We have an aggressive roadmap and plan to bring additional cutting-edge access management features to Hightouch, including tracking user activity, managing column-level controls, and more.
Next steps
These advanced access management features are available today for Business Tier customers. Jump to the Members tab in your application settings to get started. You'll be prompted to speak with a sales engineer to help you create your first custom policy. You can read more about these features in Docs.
