IBM Data and AI

Welcome to the IBM Data and AI Ideas Portal for Clients!

We welcome and appreciate your feedback on IBM Data and AI Products to help make them even better than they are today!
Before you submit an idea, please perform a search first as a similar idea may have already been reported in the portal. If a related idea is not yet listed, please create a new idea and include with it a description which includes expected behavior as well as why having this feature would improve the service and how it would address your use case.
IBM Employees:
  • Our team welcomes any feedback and suggestions you have for improving our offerings / products! This forum allows us to connect your offering / product improvement ideas with IBM product and engineering teams.

  • If you have not registered on this portal please click on the following link and register. To complete registration you will need to open the email you will receive from Aha to confirm your identity.

Additional Information:
  • The shorter URL for this site is:

  • To view our roadmaps:

  • Reminder: This is not the place to submit defects or support needs, please use normal support channel for these cases

  • Please do not use the Ideas Portal for reporting bugs - we ask that you report bugs or issues with the product by contacting IBM support.

Tighter control on data download

Many PHI (e.g., client data) and some other de-identified datasets have restrictions against moving the data outside of an "agreed upon" requirement

  • Avatar32.5fb70cce7410889e661286fd7f1897de Guest
  • Sep 14 2020
  • Future consideration
Who would benefit from this IDEA? As a data scientist/consultant/researcher, I want access to client and sensitive datasets to conduct my analysis. As data security personnel, I want ability to monitor data download behavior and alert potential violators.
How should it work?

1) At the minimal, operations/data security should be able to monitor and track data download activities (e.g., with events in LogDNA). A stricter solution is to have a firewalled environment for "sensitive" projects

2) This is a common client/data use agreement requirements, and generally is a good practice for our users to adhere to. Not enabling this would limit the data source available in our workbench to support various analytic dev efforts.

3) Today we rely on administrative control, by training and processes. However, some level of technical control would be prudent. In fact, our external HIPAA statistical expert advise strict technical control.

Idea Priority High
Priority Justification This is a mandatory requirement for many of our clients and sensitive data assets. Using training/admin control limits our ability to grow user base - in fact, our Security Review Board restricts the number of users to 20 unless there is better technical control on this.
Customer Name Watson Health
  • Attach files

NOTICE TO EU RESIDENTS: per EU Data Protection Policy, if you wish to remove your personal information from the IBM ideas portal, please login to the ideas portal using your previously registered information then change your email to "anonymous@euprivacy.out" and first name to "anonymous" and last name to "anonymous". This will ensure that IBM will not send any emails to you about all idea submissions