Thoropass

Data Rules: How to Filter and Monitor the Right Data

Data Rules let you control which data Thoropass monitors from an integration. This helps you reduce noise, focus on what’s in-scope for your audit, and ensure Thoropass is collecting the most relevant evidence.

A Data Rule is a filter you configure for an integration so Thoropass only pulls in (or evaluates) data that matches what your organization cares about.

Monitor only production AWS accounts (not dev/sandbox)

Include only assets tagged with <code>env=prod</code>

Exclude resources owned by a specific team

Narrow results to only what’s in your audit scope

- Monitor only production AWS accounts (not dev/sandbox)
- Include only assets tagged with <code>env=prod</code>
- Exclude resources owned by a specific team
- Narrow results to only what’s in your audit scope

Without Data Rules, integrations can return a huge amount of data, including resources that aren’t relevant for compliance or audit scope.

Stay tightly aligned to audit scope

Speed up evidence collection and reviews

- Reduce alert noise
- Improve monitor accuracy
- Stay tightly aligned to audit scope
- Speed up evidence collection and reviews
- Avoid chasing false positives

You should configure your account to use Data Rules if:

Your company has multiple environments (dev / staging / prod)

You have many accounts, subscriptions, or projects (AWS / Azure / GCP)

You have many teams and only want to monitor in-scope resources

You want Thoropass results to match how your auditor expects you to define scope

- Your company has multiple environments (dev / staging / prod)
- You have many accounts, subscriptions, or projects (AWS / Azure / GCP)
- You have many teams and only want to monitor in-scope resources
- You want Thoropass results to match how your auditor expects you to define scope

If your audit scope says “production systems only,” your Data Rules should reflect that.

Tag-based rules are typically the easiest to maintain long-term (especially in cloud environments).

Begin with a small rule (like including only prod), verify results, then expand as needed.

If your Data Rules are too narrow, Thoropass may miss important assets or evidence.

If you’re unsure what rules to set up, reach out to Thoropass Support (or your CSM). We can help you configure Data Rules based on your audit scope and integration setup.

Thoropass Data Rules

Find answers and get help from Intercom Support and Community Experts

This site employs cookies and other technologies that we and our third party vendors use to monitor and record personal information about you and your interactions with the site (including content viewed, cursor movements, screen recordings, and chat contents) for the purposes described in our Cookie Policy. By continuing to visit our site, you agree to our {websiteTermsLink}, {privacyPolicyLink} and {cookiePolicyLink}.

This site uses cookies and similar technologies ("cookies") as strictly necessary for site operation. We and our partners also would like to set additional cookies to enable site performance analytics, functionality, advertising and social media features. See our {cookiePolicyLink} for details. You can change your cookie preferences in our Cookie Settings.

We use cookies to make our site work and also for analytics and advertising purposes. You can enable or disable optional cookies as desired. See our {cookiePolicyLink} for more details.

Advertising cookies are set by our advertising partners to collect information about your use of the site, our communications, and other online services over time and with different browsers and devices. They use this information to show you ads online that they think will interest you and measure the ads' performance. Social media cookies are set by social media platforms to enable you to share content on those platforms, and are capable of tracking information about your activity across other online services for use as described in their privacy policies.

These cookies enable the website to provide enhanced functionality and personalisation. They may be set by us or by third party providers whose services we have added to our pages. If you do not allow these cookies then some or all of these services may not function properly.

These cookies are necessary for the website to function and cannot be switched off in our systems.

These cookies allow us to count visits and traffic sources so we can measure and improve the performance of our site. They help us to know which pages are the most and least popular and see how visitors move around the site.

You have the right to opt out of the sale of your personal information. See our {cookiePolicyLink} for more details about how we use your data.

Your Privacy Choices

We use cookies to enhance your experience. You can customize your cookie preferences below. See our {cookiePolicyLink} for more details.

Cookie Settings

Link, Press control-option-right-arrow to exit

Empty Help Center

Uh oh. That page doesn’t exist.

Disappointed

Neutral

Smiley

Thinking...

Searching through sources...

Analyzing...

Tickets submitted through the messenger or by a support agent in your conversation will appear here.

Thoropass Data Rules

Data Rules: How to Filter and Monitor the Right Data

What are Data Rules?

Why use Data Rules?

When should you configure Data Rules?

Best practices for Data Rules

Keep rules aligned with audit scope

If your audit scope says “production systems only,” your Data Rules should reflect that.

Use tags whenever possible

Start simple

Avoid overly strict rules

Need help?