PII Data Protection System

Overview

This documentation set describes a pragmatic approach to protecting customer Personally Identifiable Information (PII), focused on preventing leaks and tracing their source when incidents occur. The approach combines a database’s built-in security features (encryption, masking) with a centralized audit and access-control layer.

Core philosophy

“You cannot patch a leak you cannot see.” The first and most important investment is visibility — recording every access to PII in an immutable way.

1. Architecture Proposal

Solution positioning, the two-pillar architecture, and the overall roadmap. Read →

2. Implementation Playbook

Detailed per-phase how-to, tools, and completion criteria. Read →

3. Functional Spec

Eight functional modules and end-to-end business flows. Read →

4. Technical Design

Data schemas, API contracts, and design decisions for M1–M8. Read →

5. System Analysis

Work breakdown by role (BA, Dev, DB, QC, DevOps, Security). Read →

Compliance

Aligned with Decree 13/2023/ND-CP on personal data protection.

Note

This documentation is a design reference. Specific technical decisions should be reviewed against real infrastructure. This is not legal advice; alignment with Decree 13/2023 should involve your legal team.