Immuta monitors your data environment and provides analytic dashboards in the Immuta UI based on your data use. These dashboards offer visualizations of audit events, including user queries and when classification is enabled, the sensitivity of those queries, data sources, and columns.

Immuta continually monitors your data environment to help answer questions about your most active data users, the most accessed data, and the events happening within your data environment. These dashboards can provide even more value with classification enabled to answer questions about the sensitive data accessed by your users and the tables that contain sensitive data. Because of this information, your organization can do the following:

• Meet compliance requirements more effectively

• Quickly decide what data access is allowed for what purposes

• Reduce the effort and time to respond to auditors about data access in your company

• Reduce the effort of classifying data within the scope of security or regulatory compliance frameworks

• Dashboards with data activity patterns for data sources and users

• Dynamic query sensitivity on joined tables calculate sensitivity based on the columns queried and their toxicity when joined

• Dashboards to help users find the most recently accessed data sources and active columns

Immuta uses several features to create user-friendly dashboards that are always available in the UI and do not need to be generated like Immuta reports. These dashboards are created by combining query audit events from registered users and the sensitivity of your data. After query audit events are pulled into Immuta, the sensitivity of your data is calculated using , which find sensitive data on a column-by-column basis using tags applied by identification. Once Immuta does this work behind the scenes, users with the AUDIT permission will see dashboards that show the sensitive data within your organization’s data environment and what users are accessing that data.

With , Immuta qualifies both columns and queries as the following sensitivity types in the :

• Highly sensitive: Includes data that can cause severe harm or loss with inappropriate access or misuse.

• Sensitive: Includes personal data and data that could cause harm or loss with inappropriate access or misuse.

• Non-sensitive: Includes publicly available information or data that would not typically cause harm or loss if disclosed.

How does Immuta determine column sensitivity?

Column sensitivity is determined by the classification tags applied to the columns by the frameworks. The classification tags contain sensitivity metadata.

How does Immuta determine query sensitivity?

For queries that read from a single table, query sensitivity is determined by the column with the highest sensitivity in the query

For a query that joins tables, Immuta uses the same classification rules applied to tables and applies those rules to columns of the query. Immuta applies a new set of classification tags to the query columns and calculates sensitivity for the query event in the audit record. These query classification tags are not included on the tables' columns.

• Quicker and easier onboarding experience

• Dashboards with data activity patterns for data sources and users

• Dashboards to help users find the most recently accessed data sources and active columns

Immuta uses several features to create user-friendly dashboards that are always available in the UI and do not need to be generated like Immuta reports. These dashboards are created from audit information and events gathered from into Immuta. Users with the AUDIT permission will see dashboards that show the data events within your organization’s data environment and what users are accessing that data.

Several dashboards are available to help you find the information you need which can be . Users with the global AUDIT permission, the domain-specific Audit Activity permission, or a data owner can see the dashboards.

• Data-centric views: These dashboards provide information on how your data sources are being queried.

  • Activity summary of all data sources found on the main Data Overview tab.

  • Activity summary by data source found on each data source's Data Overview tab.

The audit dashboard shows near real-time events for Immuta events, such as login, policy changes, and data platform policy changes. Query events are ingested from once a day, but you can manually trigger an immediate query retrieval by using the ↻Load Audit Events button on the Audit page. To update your automatic query retrieval, .

The most recent query history that is available to Immuta depends on the underlying data platform latency. For example, there is up to three hours of latency between an executed query and recording the event on the Snowflake data platform side.

Requirement: Immuta permission AUDIT, Audit Activity, or data owner

The audit dashboards are visualizations of the data being queried in your data environment, how sensitive it is, and who the active users are. Use the guides below to adjust a dashboard to show the information you're most interested in.

Applying filters

You can filter dashboards in several ways and use multiple filters at once. To filter a dashboard,

1. Click Filters.

2. Select the filter you want, and select the type.

3. Repeat this process as necessary for any filters you want to apply to the dashboard.

To remove the filters, click the delete (X) icon.

Note: For a more responsive experience, Immuta limits the number of auto-suggested filter values to 100 of the most active values. The total item count for each filter type still reflects the number of events in the dashboard time range.

By default, the time range for all dashboards is 24 hours. To select a different time range,

1. Click the date range.

2. Select the time range you want from the options, choose to enter a custom date range, or choose to enter a custom time range in hours.

Note this will revert back to the default when you log out.

By default, all sensitivity types and indeterminate will appear on the graph if you have .

1. To take off specific sensitivity types, select the name of the sensitivity type from the chart legend that you do not want on the graph. The icon color will change to dark gray to signal it is not represented on the graph.

2. To add specific sensitivity types, select the name of the sensitivity type you want on the graph. The icon color will change from dark gray to the color it is represented by on the graph (blue or light gray).

Note this will only affect the dashboard you are viewing and will revert back to the default when you navigate away from the page.

Audit events from and are ingested on a configurable schedule; however, users can manually pull in audit events from these integrations at any time by completing the following steps.

1. Click Insights in the navigation menu and select Audit.

2. Click Load Audit Events.

The ingestion job may take time to finish, but will complete in the background. Once it is complete, the new audit events will populate on the events page.

Immuta monitors your data environment and provides analytic dashboards in the Immuta UI based on your data use.

This guide illustrates how to adjust a dashboard to show the information you're most interested in, such as the data being queried in your data environment, how sensitive it is, and who the active users are.

This reference guide details the components, architecture, and dashboards available.