How Automatic Architecture Addresses Access Control

The next principle is about access control. If you are making sure that nothing can happen in your system that doesn't come through the API as soon as the actually at the API level, that's where you can address access control. Now, again, I think access control is something that is too close to the data for you to delegate it to another security team. This has sort of parallels with JAMX data mesh that we've been talking about. It's not going to work if you just delegate that responsibility to a big data lake team or a data warehouse team because those people of Century will not know all of the nuances around your data. They won't know your data set well enough