GDS Data Architecture

• About

Data Sharing Principles

• Overview
• 1. Treat data as an asset
• 2. Federate first
• 3. Prepare for Once Only
• 4. Reuse sharing solutions
• 5. Support automation
• 6. Design for all data stakeholders
• 7. Use common standards for sharing
• 8. Share data transparently
• 9. Share data lawfully and ethically
• 10. Secure shared data proportionately

Capability Model

• Overview
• Channels
• Infrastructure
• Data Access
• Services
• Governance
• Security
• Trust

Security

Security

Description:
Ensures confidentiality, integrity, and availability across all layers, building digital trust and mitigating cyber risks.

Capabilities:

• Identity & Access Management (IAM): Controls for authentication, access, and privileged management.
• Data Security: Encryption, tokenisation, classification, and privacy-enhancing technologies.
• Zero Trust Security: Continuous verification and least-privilege access.
• Data Loss Prevention (DLP), Encryption, Authentication, Authorisation, Federation, Disaster Recovery & Business Continuity.

Outstanding Questions:

• What are the requirements and risks for Zero Trust Security?