Thresholds allow you to set limits on your sensitive data. By adding and applying thresholds to data grouped in locks, data can be dynamically restricted or blocked based on specific rules. It can also be used to alert and record query activity.
Thresholds limits on the following: how much data can you access, when the data is being consumed, where the request is coming from, and who is allowed to access the data. If a threshold is breached an anomaly will occur.
With predictive thresholding, we analyze the query the first time its ran and predict the number of rows the query will produce. We use that prediction to allocate row counts for governance, giving you governance the very first time you execute a new query through ALTR. The ability to predict row count is limited to "simple" SELECT statements without clauses such as WHERE and JOIN, that change the number of rows. Predictive thresholding is turned on by default and available for Snowflake Cloud Integration data sources.
Update or Remove threshold:
Note: you can enable & disable thresholds by clicking the slider button to toggle the threshold on or off
When a threshold is exceeded, an anomaly is generated and displayed in the Anomaly Feed as a card. Identified anomalies do not necessarily mean a breach has occurred; just that the behavior that deviates from the expected has been detected. Resolve an anomaly to give access to the data.