Skip to main content

         This documentation site is for previous versions. Visit our new documentation site for current releases.      

Process personal client data securely with client-based access control

Updated on May 3, 2021

Client-based access control (CBAC) is a technique for securely processing requests to view, update, or remove personal client data. By implementing CBAC in your application, you can comply with the data privacy requirements of the European Union General Data Protection Regulation (GDPR) and similar regulations.

The following figure illustrates the process for client-based access control.


CBAC request example with Pega Marketing application

You can also enforce restrictions on the use of this data in application functions.

For more information about using client-based access control, see Supporting EU GDPR data privacy rights in Pega Infinity with client-based access control.

  • Previous topic Configure platform authentication with the basic credentials authentication service type (8.2)
  • Next topic Authorize applications with the OAuth 2.0 authorization code grant type

Have a question? Get answers now.

Visit the Support Center to ask questions, engage in discussions, share ideas, and help others.

Did you find this content helpful?

Want to help us improve this content?

We'd prefer it if you saw us at our best. is not optimized for Internet Explorer. For the optimal experience, please use:

Close Deprecation Notice
Contact us