The assets that are marked as control points must be defined with reference to some context. You can define the control points according to their sensitivity, confidentiality, and value to the organization. The purpose of defining control points is such that the data owner understands the relevance of the control points. Each organization may have its own ways to classify the data. Control Compliance Suite lets you tag the control points. Tags are used to categorize data so that uniform permissions can be assigned to the data in the same category. This categorization is important for the most effective and the most efficient use of the data.

Tags can be based on the critical value of the data such as confidential, public, or classified. Tags can be also based on how often the data needs to be accessed. You can define the tags according to the department, such as human resources, finance, and marketing. Well-planned tags make the essential data easy to find. The tags can be of particular importance in risk management, legal discovery, and compliance with government regulations.

The Entitlements view lets you assign tags to the control points and categorize the control points as required. You can assign multiple tags to a control point. The tagging of a control point is not mandatory.