Overview

Compliance actions may be designated as confidential to limit access to certain staff. When a compliance action is set to confidential, staff can access its details only if they have been assigned one of the following roles:

• Owner: Can edit the compliance action and add or remove user access. Each confidential compliance action must have exactly one owner. The owner defaults to the person who marks the compliance action as confidential.

• Edit: Can edit the compliance action, provided they are assigned tasks or are designated as the processor.

• View: Can view all aspects of the compliance action but cannot make changes.

Users can also gain Owner-level permissions through the “Compliance Actions - Manager - Confidentiality” security role. This role allows users to edit all aspects of confidential compliance actions, including agency confidentiality settings. Assigning this role ensures that confidentiality settings can be updated if the Owner is unavailable.

Designating a Compliance Action as Confidential

A compliance action can be marked as confidential by selecting the Confidential checkbox in the right-hand sidebar of the Compliance Action Details page.

When a compliance action is set to confidential, the Confidential Settings section appears, where owners can grant additional users View or Edit access to the compliance action.

Open

The Confidential Settings section

Managing User Access (Owners)

To grant or modify a user’s access to a confidential compliance action:

• Enter the user’s name in the Add User control, then click the Add button.

• Select the appropriate security level.

• Click the Save button.

To remove a user’s access:

• Click the X button next to the user’s name.

• Click the Save button.

On this page

Related Content

• https://windsorsolutions.atlassian.net/wiki/x/f4IgIQ