Data is the raw material of the digital economy, and data products and services are used to deliver value to internal and external data consumers. To mitigate the risk of information exposure, organizations should collaborate to design controls that enforce access policies identified by data owners and/or stakeholders. Data access authorization systems are used to implement data access controls, and the data access layer provides a set of capabilities to implement a policy-based data access authorization system. The D&A pipeline typically has three segments: upstream, midstream, and downstream.
