Process Mining is deprecated with Appian 24.2 and will no longer be available in an upcoming release. Instead, we encourage customers to use Process HQ to explore and analyze business processes and data. |
Process Mining uses your data for analysis and insights, so it is important to consider the security and privacy implications before you import data into Process Mining. All aspects of Process Mining interact over HTTPS to keep your data secure in motion: Mining Prep and Process Mining send event logs and case attributes over HTTPS.
Because your data moves securely within Appian, the primary area of consideration surrounds what kind of data you are sending and who should have permissions to see that data. With Process Mining, you are always in control of what data you choose to include.
This page describes security aspects you should consider when working with Process Mining and Mining Prep.
Before you add data sets to Mining Prep or event logs to Process Mining, you may need to remove personal identifiable information (PII), personal health information (PHI), financial information, or other data that's legally protected. Protected information can include names, emails, IDs, or other information that could be used to trace or identify a person.
When preparing your data for process mining, you'll want to balance the utility of the data with your own data security policies. There are a couple of approaches you can take to exclude unnecessary or private data:
You may also want to implement more advanced data anonymization techniques when preparing your data, but you must implement this before importing the data into Mining Prep.
Process Mining assigns each user account a unique API key that they can use to communicate back and forth with the system. The API key is also used to send transformed data from Mining Prep to Process Mining. All of these calls occur securely over HTTPS.
In cases of unauthorized disclosure, you can renew your API key. When you renew your API key, the previous key is disabled from further use.
To renew your API key in the Process Mining module:
To renew your API key in the Mining Prep module:
Admins can create organizations and put users into user roles to restrict access across both the Mining Prep and Process Mining modules.
See Manage Users and Organizations for more information.
Password requirements for Process Mining match the rest of Appian Cloud:
7
characters long.1
numeric character.1
letter.4
passwords used.You have 10
attempts to log in before you are temporarily locked out for 5
minutes.
Passwords expire after 90
days. After this time, you will need to reset and change your password to log in.
Appian Process Mining will automatically sign you out of your user session to reduce the risk of unauthorized access.
These timeouts will occur as follows:
Security Considerations