# Financial Data Policy (BaFin-relevant)
# Strict controls for financial data handling.

name: financial-data
description: BaFin-compliant financial data governance
version: "1.0.0"

rules:
  - name: deny-financial-external
    description: Financial data must not leave internal systems
    conditions:
      data_type: restricted
      action: export_data
      target: external
    effect: deny
    priority: 100

  - name: escalate-financial-access
    description: All access to financial data requires escalation
    conditions:
      data_type: restricted
      action: read_financial
    effect: escalate
    priority: 95

  - name: deny-financial-offhours
    description: Financial operations blocked outside business hours
    conditions:
      data_type: restricted
      action: modify_financial
    effect: escalate
    priority: 90

  - name: allow-financial-reporting
    description: Internal financial reporting is permitted for operators
    conditions:
      agent_role: operator
      action: generate_report
      data_type: confidential
      target: internal
    effect: allow
    priority: 80