Auditing & Tamper-Evident Logs
Maintain immutable audit trails of all data access and modifications
18 docs tagged with "compliance"
View all tagsChecklists & Templates
Practical reference guides and checklists for software architecture reviews, decisions, and operational excellence. Templates for ADRs, threat modeling, API reviews, and production readiness.
Compliance Frameworks (PCI-DSS, HIPAA, GDPR)
TL;DR
Data Lifecycle & Compliance
Manage data through its lifecycle: retention, privacy, erasure, and audit trails
Data Protection
Encrypt data at rest and in transit, manage keys, and protect sensitive information
Data Quality, Lineage & Governance
Ensure data integrity, track lineage, and maintain data governance
Drift Detection and Prevention
Detect when infrastructure diverges from code; prevent manual changes from bypassing version control.
Encryption at Rest: Envelope Encryption
Encrypt data stored in databases, files, and backups using envelope encryption
Endpoint Hardening and Security Baselines
TL;DR
High-Compliance Systems: Audit and Segregation of Duties
TL;DR
Least Privilege and Separation of Duties
Minimize permissions and distribute authority to limit blast radius
Log Retention and Privacy
Manage log lifecycle responsibly: comply with regulations, protect sensitive data, and optimize retention periods.
Policy as Code and Guardrails
Enforce infrastructure standards and security policies automatically; prevent non-compliant deployments.
Retention & Archival
Plan data retention policies and archive old data for compliance and cost
Right to Erasure & Data Portability
Implement GDPR rights: user data deletion and export on request
Security Logging, SIEM, and SOAR
TL;DR
Specialized Domains: Architecture Considerations
Deep-dive into architecture patterns for real-time systems, streaming, IoT, ML, compliance, gaming, embedded, fintech, e-commerce, and social platforms
Stakeholders & Concerns
Identify stakeholders, elicit their concerns, and reconcile trade-offs into architecture decisions