IT Connect

Information technology tools and resources at the UW

Data Security Overview

The Enterprise Data Warehouse (EDW) is the central repository of the University of Washington’s electronically stored institutional data. Our warehouse is designed to facilitate reporting and analysis, so that decisions-makers can have better information on which to act.

The EDW houses a large volume of data from across multiple subject areas. In order to protect sensitive data while providing uniform access to enterprise information, the  Data Management Committee developed security roles for access to the EDW. Users are assigned to these roles according to their job responsibilities. Principles identified in the UW Information Systems Security Policy Statement informed the creation of these roles.

These security roles provide fine-grained access to information and define privileges based on specific row and column access needs. The Security Access and Roles Matrix (Matrix) describes the roles and their privilege levels across data subject areas (such as Academic, HR, Finance).

University faculty and staff must request access to EDW data as well as reporting and analysis tools. Depending on the type of data needed, access is granted by a local ASTRA administrator or by the Data Custodians. In both cases, users are assigned to one or more roles defined by the Matrix.

UW Data Map - 7 subject areas are Academics, Research, University Advancement, Services and Resources, Financial Resources, Human Resources and Master Data

Learn more about Data Trustees and Data Custodians and their areas of responsibility

Leverage the EDW to get the information you need


The following three tools work in concert to ensure the DMC’s Matrix rules are enforced. For an overview of how these tools work together, see the Data Access Control page.


Access to Systems, Tools, Resources and Application

ASTRA is an authorization system that stores information about who can use a wide variety of administrative applications and tools across the UW


Data Access Control*

The DAC is a SQL database that dynamically protects UW’s central data through security settings for every database, table, and column available to users within their assigned roles.


Security Metadata Admin Tool*

The SMAT is a web‐based front end to the DAC. Users are granted table‐wide access or restricted access by column and/or row, to individual EDW database tables.

*Full patent filed with the US Patent and Trademark Office in October, 2009. DAC and SMAT were developed by Information Management’s Enterprise Data & Analytics team.