Understanding Behavior through Business Rules
11/97
Copyright, 1997
I’ve been fortunate in my career to be able to observe several competitors within the same industry formulate their business rules for managing the relationships with their customers. My responsibility was to develop the data and process models to support those business rules. What I discovered was that the same models moved from one company to the next with little change. What really amazed me was when those models transitioned virtually unchanged to support the customer relationship information management needs of companies in other industries.
Each company is unique, with its own values, corporate culture and way of doing things. These companies compete in highly volatile industries, such as financial services and telecommunications, which are undergoing massive restructuring with respect to the products being delivered and the make-up of the competitors. New companies are entering the market, others are withdrawing or consolidating and alliances are being forged both among former competitors and with companies in other industries. In fact, a competitor in one market may be an alliance partner in another.
With all this volatility in the marketplace, how can the data and process models be so similar? I’ve concluded that what it takes to participate in an industry, from an information management perspective, is quite stable. What the organization needs to know (its data) and what it needs to do (its processes) are unique to an industry, not to an individual company. In fact, much of that data and processes are dictated simply by what it takes to be in business, whether that business is a for-profit, not-for-profit or governmental enterprise.
What is distinct to each competitor is how it chooses to configure and price its products, how it markets its products and services and how it decides to select and configure its resources to deliver those products. If the "what" of being in business is universal, the "how" of business reflects the personal beliefs and values of each organization. The "how" of business is manifested through an organization’s business rules, as embodied in its policy, and its workflow, as described through its procedures. In fact, an organization’s procedure manuals describe how the organization is expected to behave in response to any event. This is an ever-changing aspect of the organization.
How an organization chooses to respond to an event can give it competitive advantage over its competitors. The business rules an organization establishes to control its behavior are a reflection of its values. For example, many organizations’ published "vision and value" statements include a commitment to being customer-focused. They believe that they should to always behave in a manner that is in the best interest of their customers. Often, there is no corresponding indication of the degree to which "risk aversion" is also valued by the enterprise. You must gleam how risk averse an organization is by observing its behavior when it encounters a potentially threatening situation.
For example, consider the overdraft policies of four banks (table 1). Each has stated its commitment to be customer-focused, but their behavior towards an event that can result in a potential loss provides an indication of which value, risk aversion or customer-focus commitment, is predominant. Bank 1, who pays the checks and assumes the risk that its customer will not rectify the anomaly, exhibits high commitment to its customers and, in this situation, a low level of risk aversion. Bank 2 will pay the checks, saving the customer the embarrassment of dealing with bounced checks, but charges a hefty fine for the service. It too is assuming the risk that the customer won’t make good on the checks. But, by charging the fine, the bank is punishing its customer for "bad" behavior. Is this policy really in the best interest of the customer or is it self-serving? Bank 3 exhibits customer-focused behavior by giving the customer an opportunity to correct the overdraft situation. However, if the money is not on deposit by the next day, the bank’s high aversion to risk takes over and the checks are bounced. Finally, Bank 4 reacts by protecting its own position by bouncing the checks and charging the fine. There isn’t a lot of customer-focused behavior within this organization.
Bank |
Risk Aversion Level |
Customer-Focus Commitment |
Behavior |
1 |
Low |
High |
Pay the checks. |
2 |
Low |
Medium |
Pay the checks; Charge a fine. |
3 |
High |
High |
Notify Customer; If still overdrafted on the next business day, bounce the checks. |
4 |
High |
Low |
Bounce the checks; Charge a fine. |
Table 1: Values Dictate Behavior
When an organization establishes its business rules, it is constantly balancing the trade-off between risk and its other values. With respect to overdraft policies, the trade-off is between financial exposure and the degree to which it trusts its customers. After all, paying those overdraft checks is equivalent to extending an unsecured, interest-free loan with no guarantee that the funds will ever be repaid. Rick aversion is a major determinant that influences how an organization formulates its business rules.
To achieve an edge over its competitors, companies are attempting to refine their business rules by controlling the scope to which they apply. For example, Bank 1 may decide to limit its financial exposure in overdraft situations by only paying the checks for their best customers. Today, if the decision to pay checks for an overdraft account is embedded in application code, implementing the new business rule may be a costly, time-consuming effort. Companies are looking for ways to refine and test their business rules on a more timely basis. Our information systems need to be architected so that they are amenable to change, allowing an organization to rapidly prototype, implement and refine its business rules in response to market fluctuations. To meet the challenge of these competitive environment, information systems must be able to respond to events in a manner that is appropriate to the business objects involved and the business rules in effect at that specific point in time. These information systems must be designed to control behavior, not just processes.
Behavior is controlled by three constructs: the type of Event that has occurred, the state of the Business Objects on which the event operates and the organization’s business rules (Figure 1). A business object state specification, which is itself a business rule, identifies a set of property values that the business object(s) must assume to be considered to be in that state (e.g. Overdraft is a state of a checking account that occurs when its balance falls below zero). Many business rules are specified in terms of the business object states of interest to the organization (e.g. If an account overdrafts and the account is owned by a preferred customer, pay the checks. Otherwise, bounce the checks). Business rules are specified independent of the events they constrain, so that they can be used by any event that causes the related business objects to achieve a state which may invoke the business rule, even those events that we have not been able to anticipate.
When an event occurs, it follows its prescribed procedure plan, selecting the related business objects when required. At the point of selection, the business objects are in their "initial" state. The event may causes changes to that state as it continues performing its operations. If a business object state is encountered that triggers a business rule, the event’s standard behavior changes to conform to the business rule. The event is completes until it all its tasks are finished and the business objects’ state has been committed to persistent storage.
Figure 1: Behavior Architecture
An organization’s business rules are an essential component of its collective knowledge. Unfortunately, this knowledgebase isn’t always documented in an accessible, integrated and consistent manner. Often, like folklore, the knowledge is passed between the business players and down through the generations of business policy makers without actually being recorded. As the business information analyst, we are often not part of that knowing group. For example, suppose you are the information analyst facilitating the business players in determining how they plan to become more customer-focused. They’ve decided to provide preferential treatment to their preferred customers. During the brainstorming session, one participant explains "we don’t want to bounce a preferred customer’s checks". Everyone else heartily agrees (except the audit guy who’s worried about the financial exposure implied by this business rule). But this simple statement only makes sense if you are "in the know" about overdraft accounts and customers and all the rest of the knowledgebase (tables 2 – 5) that provides the context to our business rule statement.
We serve as the scribes who record the organization’s business rules. We structure and diagram them so they are easily understood by both business and information technology stakeholders.
The business rule classification schemes are extremely important, as they serve as the bridge between the business perspective and their representation within the organization’s information systems. One of the primary purposes of a business rule classification scheme is to provide templates that can be used in automating the transformation of the business rule statement into information applications. For example, a definition business rule identifies the business concepts important to the organization. These business rules for the basis of the enterprise’s common business vocabulary (table 2).
Business Concept |
Definition |
Examples |
| Product | A mechanism for marketing services. | On-demand Savings, Term Savings, Checking, Money Market, first Mortgage, Equity (second mortgage) |
| Product Class | A major grouping of products. | Savings products include On-demand Savings and Term Savings, Demand Deposits include checking and money market, Revolving Credit include credit cards and overdraft protection, Mortgage includes first mortgages and equity (second mortgages). |
| Account | A mechanism for tracking the financial activity against one of more customer services. | Liability Account 1234323 which is used to
track debits and credits for checking account customer service Asset Account 1232343 which is used to track debits and credits for the credit card account service 5433-1233-4535-4431 |
| Business Party | A person or organization of interest to the enterprise. | See Person or Organization |
| Person | A human being | Terry Moriarty |
| Organization | One or more people who band together for some purpose. | IBM, Inastrol, the State of California, the Moriarty/Reynolds household |
| Customer Service | An instance of a Product that has been sold. | Checking Account Service 1234-234-559 Term Savings Account Service 23222-45335 ATM Service 3343-4434-4323-3332 Credit Card Service 5433-1233-4535-443 |
Table 2: Definition Business Rules
Business State business rules are a special type of definition business rules that describes a subset of related business objects that satisfy a specific set of qualification criteria. Business State business rules can be the most volatile. The business, especially marketing, always seems to be identifying new states that they wish to track or changing the definition of the business state by altering the qualification criteria. Business States are defined in terms of the values that can the assumed by the properties of business objects. For example, we see that a "Preferred Customer" is that set of customers who:
- are people
- have a cross-sell index greater than or equal to 3
- a rolling twelve month average balance that is greater than or equal to $5,000
- a rolling twelve month average revenue of at least $125
Each criterion refers to a business concept that is defined in terms of other business rules. Customer is a business object state, person has a definition business rule and cross-sell index, rolling twelve month average balance and revenue have derivation business rules.
Business Concept |
State of Business Object Class |
Qualification Criteria |
| Overdraft | Account | Deposit Products: Ledger balance < 0 Loan Products: Available credit < 0 |
| Preferred Customer | Customer | Person Cross-sell Index >= 3 12 month average balance >= $5000 12 month average revenue >= $125 |
| Customer | Business Party | Owner of a portfolio of services based on the
role assumed with respect to an account, as follows: Deposit Products: owner of the funds on deposit Loan Products: borrower of the funds |
Table 3: Business State Business Rules
A Derivation business rule specifies how the value of one business object property is derived from the values of other business object properties (table 4). It can be argued that business object states are really derivation business rule because you can derive the state from the qualification criteria. However, I believe that business object states have a distinct enough pattern to be treated as a separate business rule category.
Business Concept |
Derivation |
Example |
| Cross-sell Index | The count of the number of Product Classes that are owned by the customer. | If a portfolio contains 3 checking accounts
and a credit card, the cross-sell index in 2. If a portfolio contains 1 money market account, 1 on-demand savings and a mortgage, the cross-sell index is 3. |
| 12 month average balance | The average of the average monthly balance for the last 12 months for all the accounts included in a portfolio | If the average monthly balance for the last 12 months for the portfolio’s accounts are: $3,000; 4,000; 5,000; 5,500; 6,000; 6,000; 6,000; 6,750; 5,000; 5,000; 4,500; 3,500 then the 12 month average balance is $5020. |
| 12 month average revenue | The average of the monthly revenue for the last 12 months for all the customer services included in a portfolio | If the monthly revenue for the last 12 months for the portfolio services are: $-25, 50, 100, 150, 200, 200, 200, 225, 150, 150, 125, 100 then the 12 month average revenue is $135. |
Table 4: Derivation Business Rules
Constraint business rules have the most direct impact on the behavior of the organization. They describe how an event is to respond when the specified condition is detected. The action to be taken may be procedural, specifying the dependencies between the tasks to be performed. In the overdraft example, the tasks span two days. On day 1, all customers whose accounts are in the overdraft state are to be notified to give them a chance to cover their negative position. Once the current day’s financial transactions have been processed, the debits for those accounts that are still overdrafted, but are owned by a preferred customer, are paid. The debits for the remaining accounts are refused. In other words, if you are not a preferred customer, your checks will be bounced.
The specification of the behavior may appear to be procedural. To some degree, this is true. The bank’s resources (e.g. its operational information systems) impose constraints on how the organization processes its work. Even though the customer makes her deposit earlier in the day, it is not actually posted to her account until that night. The information systems do not have the ability to post the deposit in real time, but must wait until the nightly batch processing. Consequently, a timing constraint is imposed on the business that must be taken into consideration (e.g. day one, day two tasks). This also means that the customer must be notified of the overdraft situation early enough so that she has time to make a deposit before the batch cycle cut-off time.
Response |
|||
Condition Detected |
Condition | Behavior | |
| Overdraft Account | Day 1 | For all customers | Notify customer of overdraft condition Process Current Day’s Work |
| Day 2: Still in an overdraft state |
A preferred customer | Pay debits | |
| Not a preferred customer | Reject debits (e.g. bounce checks) | ||
Table 5: Constraint Business Rule
Our final responsibility is to maintain a repository where the business rule statements are maintained and linked to their information systems component counterparts. The business rule repository represents the enterprise’s information asset warehouse. It can be navigated so that the interplay between business rules can be traced. The business rule repository should be able to answer the questions: "what’s the impact on my business systems if I change this business rule?" and "how will my business behave if I change my business rules in the following manner?".
Before the business rule approach to be viable alternative to information management, the various components (e.g. discovery methodologies, classification schemes, behavior architecture, business rule environment) must be integrated. Each component provide powerful frameworks for attacking different aspects of information asset management. But, we won’t be able to offer business rule management as a viable alternative until we can demonstrate that all our pieces fit together into a better solution.
Terry Moriarty, president of Inastrol, a San Francisco-based information management consultancy, specializes in customer relationship information and metadata management. Her common business models have been used as the basis of customer models for companies within the financial services, telecommunication, software/hardware technology manufacturing, and retail consumer product industries. You can reach her at terry@inastrol.com.