Geopolicies

Keyavi's geopoliciesClosed A policy type that restricts data access based on specified geographical limitations configured at the organization level and on payloads. allow you to define virtual perimeters, or geofences, to protectClosed The process of encrypting a file and tying access policies to it so that authorized users can access the data securely based on restrictions set by the data owner. your data. Specify the geolocations at various levels of granularity including country, state, zip code, or latitude and longitude coordinates.

You can define these geolocations at multiple levels: organization, file, and file user levels.

  • At the organization level, define the allowed geolocations (Allowed Locations) that users must be in to access data. You can also define countries (Excluded Locations) from which users can never access data. Administrators can define organization-level policies in the Policy section of the Keyavi Portal.

  • At the file level, define geolocations where access to the specific file is allowed. Users can define locations when they protect a file or from the Data Management page in the Keyavi Portal. Administrators can manage file-level access from the Data Management page in the Keyavi Portal.

  • At the file user level, you can apply additional file-level geopolicies that apply only to certain users with access to the file. Manage file user-level locations the same way you manage file-level locations.

Organization-level geopolicies supersede file-level geopolicies, so if you apply a file-level policyClosed Rules associated with a protected payload that designate which users can access the encrypted file, from what locations, and for what time periods. that conflicts with the organization-level policy, the organization-level policy is applied.