Data masking protects sensitive customer information by controlling what data is visible to different users and systems. When enabled, Capillary replaces sensitive field values with masked characters in the Member Care UI and API responses unless explicit access is granted.

This ensures that sensitive information is:

• Visible only to authorized users or API clients
• Protected from accidental or unnecessary exposure
• Handled in line with internal security and privacy requirements

Whether data is shown or masked depends on who is accessing the data and how the access is performed.

Example

A customer’s mobile number is stored in the system.

• A support user without permission sees the value as ****** in Member Care and in the API responses.
• An authorized user or API client sees the full mobile number on Member Care and in the API responses

Enabling data masking

1. From Organization settings, navigate to Organization Setup -> PII Configurations.

2. To enable the PII deletion, select the CONF_PSI_MASKING_ENABLED check box.

   

Behaviour

• When CONF_PSI_MASKING_ENABLED = false
  • Data masking is disabled.
  • All fields are returned unmasked,
• When CONF_PSI_MASKING_ENABLED = true
  • Data masking is enabled.
  • Capillary evaluates masking for each request based on:
    • Whether the field is marked for data masking
    • Whether the user or API client has access to the fields

Once enabled, this configuration applies across:

• Member Care UI
• Supported APIs

This option is disabled by default.