Hi,
As per the video, **Masking the sensitive field **option is used for hiding the sensitive information returned to the user.
To make use of this feature, I would apply the [**Row Restrictions**](https://community.denodo.com/docs/html/browse/7.0/vdp/administration/databases_users_and_access_rights_in_virtual_dataport/user_and_access_right_in_virtual_dataport/user_and_access_right_in_virtual_dataport#row-restrictions) privilege to the role/user by performing the below steps in the Virtual DataPort Administration Tool:
* In the "Administration menu > User Management/Role Management", click on the “Assign privileges” option
* Choose the particular database in which the element exists and select “Advanced Privileges”>”Edit” option.
* Click on the particular element to apply restriction.
* In the “simple condition” tab, specify the particular condition and enable the **“Mask sensitive fields if ANY of them are used”** option to mask the row.
* Then, select the sensitive column to be masked.
Additionally, the [**Map()**](https://community.denodo.com/docs/html/browse/7.0/vdp/vql/appendix/syntax_of_condition_functions/other_functions#map) function is used to return the value associated with the key. To create maps, I would use the [CREATE MAP](https://community.denodo.com/docs/html/browse/7.0/vdp/vql/defining_other_elements_of_the_catalog/defining_a_map/defining_a_map#defining-a-map) command in the VQL shell of the Virtual DataPort Administration Tool like:
> CREATE MAP { I18N | SIMPLE } <name:identifier>
( [<name:literal> = <value:literal>]+ ) )
Hope this helps!