Best Practices and Security

This section covers security controls built into Data Lens and recommended practices for writing efficient queries.

Security

Data Lens uses Snowflake Secure Data Sharing with row-level security.

Feature	Description
Data isolation	Your data is isolated and accessible only to your authorized users
Data residency	Payment data remains in PayPal's Snowflake environment
Encryption at rest	AES-256 encryption for all stored data
Encryption in transit	TLS 1.2+ required for all connections
Access control	Managed via your Snowflake account's RBAC

This table outlines best practices for writing efficient Data Lens queries.

Practice	Reason
Always use date filters	Reduces data scan volume
Use `LIMIT` for exploration	Prevents large result sets
Select specific columns	Reduces data transfer
Use `fee_summary_v1`	Pre-aggregated for reports
Filter by `TRANSFER_ID`	Leverages partition pruning