Imagine a large ERP system in Healthcare. With lots of personal data about patients/clients. Now the business introduces a new requirement: when requested all personal data on a individual client must be removed thoughout the system. My first answer: it cannot be done, because of all the relationships between entities. The minimal requirement is: at least the personal data should not appear on screen or in pdf/excel exports. Or be shared through webservices any more. Is there (if any) a best practice / design pattern to set up this major change in functionality?
Aucun commentaire:
Enregistrer un commentaire