Data Classification
Unlock the complete study guide + 1,040 practice questions across 16 full exams.
Bundled into the existing Certified Cloud Security Professional premium course — no separate purchase.
Included in this chapter:
- The classification chain: policy, mapping, labeling
- Writing the policy: sensitivity tiers and their drivers
- Mapping and labeling: making the class travel with the data
- Exam-pattern recognition: classification questions
Where the classification decision and the label come from
| Dimension | Classification policy | Data mapping | Data labeling |
|---|---|---|---|
| What it produces | The categories and the criteria for each | An inventory tying each data type to its locations and flows | A tag physically bound to each object |
| The question it answers | What classes exist and how to decide one | Where does each class live and where does it move | What class is this specific object |
| Driven by | Regulation, contracts, and business impact of disclosure | Discovery output plus jurisdiction and residency rules | The policy criteria applied to real content |
| Who/what acts | Data owners and governance set it once | Security and data teams maintain the map | Users, admins, or automated tools per object |
| Downstream consumer | Everything below depends on it | Retention, residency, and risk reporting | IRM, DLP, access control, and retention enforcement |
Decision tree
Cheat sheet
Unlock with Premium — includes all practice exams and the complete study guide.