These are the points in the code where personal data enters either via direct user input or via other API/service pushing it. It is important to secure data collection points to minimise the risk of data compromise. Data collection practices need to adhere to privacy laws like GDPR which requires to take user consent and put privacy notice.

Directory rules/collections/annotations:

|__rules
   |__collections
   |  |__annotations
   |  |  |__java.yaml