%22%2F%3E%0A%3Ccircle%20cx%3D%22978%22%20cy%3D%22150%22%20r%3D%22210%22%20fill%3D%22rgba(124%2C166%2C199%2C0.16)%22%2F%3E%0A%3Ccircle%20cx%3D%22978%22%20cy%3D%22150%22%20r%3D%22122%22%20fill%3D%22rgba(255%2C255%2C255%2C0.04)%22%20stroke%3D%22rgba(255%2C255%2C255%2C0.12)%22%2F%3E%0A%3Cpath%20d%3D%22M70%20428H1130%22%20stroke%3D%22rgba(208%2C122%2C85%2C0.28)%22%20stroke-width%3D%222%22%20stroke-dasharray%3D%2210%2014%22%2F%3E%0A%3Crect%20x%3D%2276%22%20y%3D%2272%22%20width%3D%22360%22%20height%3D%2242%22%20rx%3D%2221%22%20fill%3D%22rgba(255%2C255%2C255%2C0.06)%22%20stroke%3D%22rgba(255%2C255%2C255%2C0.1)%22%2F%3E%0A%3Ctext%20x%3D%2298%22%20y%3D%2299%22%20fill%3D%22rgba(242%2C244%2C247%2C0.82)%22%20font-family%3D%22Arial%2C%20Helvetica%2C%20sans-serif%22%20font-size%3D%2217%22%20font-weight%3D%22700%22%20letter-spacing%3D%223%22%3EDATABRICKS%20BLOG%3C%2Ftext%3E%0A%3Ctext%20x%3D%2278%22%20y%3D%22212%22%20fill%3D%22%23F2F4F7%22%20font-family%3D%22Georgia%2C%20'Times%20New%20Roman'%2C%20serif%22%20font-size%3D%2254%22%20font-weight%3D%22700%22%3E%3Ctspan%20x%3D%2278%22%20dy%3D%220%22%3EABAC%20row%20filtering%20and%3C%2Ftspan%3E%3Ctspan%20x%3D%2278%22%20dy%3D%2262%22%3Ecolumn%20masking%20policies%2C%3C%2Ftspan%3E%3Ctspan%20x%3D%2278%22%20dy%3D%2262%22%3Egoverned...%3C%2Ftspan%3E%3C%2Ftext%3E%0A%3Crect%20x%3D%2278%22%20y%3D%22502%22%20width%3D%22260%22%20height%3D%2246%22%20rx%3D%2223%22%20fill%3D%22rgba(208%2C122%2C85%2C0.18)%22%20stroke%3D%22rgba(208%2C122%2C85%2C0.32)%22%2F%3E%0A%3Ctext%20x%3D%22104%22%20y%3D%22532%22%20fill%3D%22%23F2F4F7%22%20font-family%3D%22Arial%2C%20Helvetica%2C%20sans-serif%22%20font-size%3D%2222%22%20font-weight%3D%22700%22%3ECore%20AI%3C%2Ftext%3E%0A%3Crect%20x%3D%22900%22%20y%3D%22410%22%20width%3D%22190%22%20height%3D%22190%22%20rx%3D%2238%22%20fill%3D%22rgba(255%2C255%2C255%2C0.06)%22%20stroke%3D%22rgba(255%2C255%2C255%2C0.12)%22%2F%3E%0A%3Ctext%20x%3D%22995%22%20y%3D%22522%22%20text-anchor%3D%22middle%22%20fill%3D%22%23F2F4F7%22%20font-family%3D%22Arial%2C%20Helvetica%2C%20sans-serif%22%20font-size%3D%2292%22%20font-weight%3D%22800%22%3EDA%3C%2Ftext%3E%0A%3C%2Fsvg%3E)
Original article excerpt
Server-side extracted preview paragraphs from the original source.
Sca
• Unity Catalog brings together ABAC policies, governed tags, and automated data classification into a single, unified framework for scalable data governance. • These capabilities eliminate manual, per-table security and inconsistent enforcement by automatically discovering, tagging, and protecting sensitive data as it’s created. • Organizations can define access rules once and apply them across their entire data estate, which ensures consistent, real-time protection with less operational overhead and stronger compliance.
As data estates grow, every organization that manages sensitive data at scale faces the same question: how do you ensure that sensitive data is protected consistently across every table, whether it contains PII, financial records, health data, or anything else subject to compliance requirements?
AI further heightens this problem. Users can access data in more ways than before, through Genie, agents, APIs and more. Protection has to keep pace with the demand for data, or access controls end up limiting the empowerment that technology has created.
The answer cannot be manual configuration per table. It has to be a system where governance teams define the rules once, and protection follows the data automatically across the entire data estate as it is created and classified. That way, users and agents can be granted broad access to the platform without being granted broad access to sensitive data.
Today, we are excited to announce the General Availability of three complementary capabilities in Unity Catalog that make this possible: Attribute-Based Access Control (ABAC) policies for row filtering and column masking, Governed Tags, and automated Data Classification.
Access rules need to apply dynamically based on attributes, sensitive data needs to be detected as it appears, and responsibilities need to spread across specialized roles so no single person is a bottleneck. Unity Catalog brings this together through three complementary capabilities, paired with a permission model that enables separation of duties: attribute-based access control (ABAC) policies, governed tags, and agentic data classification.