In the past there have been discussions on PHI (and PII) in ServiceNow. These conversations have focused on limiting the amount of PHI/PII that gets put into ServiceNow tickets, but ultimately, we need to have an allowance for it. I was wondering if there is any option in ServiceNow to flag tasks/incidents as containing PHI/PII and then having "break the glass" functionality if an agent believes they need to review that data. This is how Sherlock works (Epic's ticketing system), where a ticket can be entered with no restriction, but if the original submitter or anyone attached to the ticket believes there is PHI, that data can be tagged and is then blurred out. To view it you need to type in an explanation of why you need to see it, which is then available for auditing.
Can you see if there is anything out of the box for this that ServiceNow provides
