Skip to main content

         This documentation site is for previous versions. Visit our new documentation site for current releases.      

Modifying rules to support General Data Protection Regulation

Updated on December 22, 2021

To protect customer data, in Pega Care Management, you can add properties to or remove properties from client-based access control (CBAC) rules. This provides your organization with the tools necessary to be in compliance with privacy requirements of the European Union (EU) General Data Protection Regulation (GDPR) and similar regulations.

Pega Care Management Implementation Guide
For example, if a patient does not want family information available in their medical record, you can remove the .FamilyMember property from the GDPRFamilyHistoryCBAC rule.

The rules that you can modify to support GDPR include:

  • GDPRFamilyHistoryCBAC
  • GDPRObservationsCBAC
  • GDPRMedicationsCBAC
  • GDPRAllergiesCBAC
  1. In the header of Dev Studio, enter and search for GDPRFamilyHistoryCBAC.
  2. Click the name of the rule.
  3. On the Client-Based Access page:
    1. Check out the rule.
    2. Based on your organization’s needs, add a row to add a new property to the rule.
      For more information, see Configuring a client-based access control rule
    3. Ensure that you select the applicable check boxes.
    4. Save the rule.
  4. Repeat steps 1 through 3 for each of the other rules.

Have a question? Get answers now.

Visit the Support Center to ask questions, engage in discussions, share ideas, and help others.

Did you find this content helpful?

Want to help us improve this content?

We'd prefer it if you saw us at our best. is not optimized for Internet Explorer. For the optimal experience, please use:

Close Deprecation Notice
Contact us