Enter your idea

i want my staff to have access for data entry of all sort. The same is then approved by me. My staff does not have access to approve (though i want him to incorporate all types of entries)

Yes exactly, for my sales rep now, its either very little access or too much access, pls do something to make Xero even better!

Xero - Please get this sorted ASAP!

Xero is really good and this User Access area is really too limited, it will really help a lot to give more customize access.PLS WORK ON THIS XERO, it will really make our life easier!

We want to be able to use xero to generate purchase orders but without the junior member of staff creating them to be able to see the amounts owed to our suppliers! We are now forced to either generate them manually which is very time consuming or consider alternative accounting systems

Hey Xero,
Please add this feature now. It's really critical. We don't want them viewing sensitive information and not understand it.

Come on Xero. You can see from all the replies that the access level of users need to get attention. Please spend some time on this, than rather upgrading report structures.

Agree with this idea, many of my client feedback to me that the Xero user role is to limited.
for some example,
1. my client give them staff Draft Only rule, but it can`t create credit note.

2. my client wan them staff to create invoice only, but this rule can`t access Inventory, because the staff need to check stock QTY balance.

3. when give access to auditor for Read Only, the auditor can`t generate the Inventory Report, is that other countries audit no need to check inventory transaction or summary? "Oh! SOFP show closing stock $XXXX, OK Verify!"

At the end all the user access become Standard Permission or Above~

To be able to restrict users to certain areas - eg. payables/receivables and even an option when setting up new clients /suppliers having a 2-stage sign-off if required.

From a systems controls, security and audit perspective this is a massive oversight from Xero - as the same user can upload, approve and reconcile (in bank) a supplier and payment. Quite the security flaw and requires user access configurability to segregate duties

Unfortunately, many other cloud-based systems are one ahead of Xero in this area.

Xero's user access settings are EXTREMELY limited. Other systems offer the basic requirement to set user access at a granular level. This is a basic requirement in.

A good starting point is to focus on the reports. The way the access settings are structured is manageable to a lesser degree, but without the ability to limit access to reports, it is then impossible to effectively manage user access.

For example, a user with "Invoice Only" rights may need limited access to reports, but this level does not allow any access to reports.

Or, a user with "Standard" access rights may not be allowed to process invoices or bills since the user is processing the cashbook, but this profile allows access to both. This is a general internal control risk. YOU, being Xero, realises that you are providing a system with INTERNAL CONTROL RISKS.

I truly hope that these requests are being considered with high priority.

Jacco du Toit

There is also no need for the staff member to be able to access the bank accounts, again, she should not be privy to this information.

Xero, please sort this as a priority.

This is crucial and I'm surprised that it's not already possible. We have a staff member who needs to be an Adviser as she does reports etc but then there is no way of stopping her from gaining access to staff wages via contacts which she should not be privy to. It would be good to have an option to be able to restrict/hide access to some contacts.

This is critical to us and many clients are being put off of using Xero due to it not having this feature.

I need staff to be able to run reports etc. but not have visibility of the bank (particularly other employees wages).

This should surely be a priority.

I agree with this idea. Currently, we're having to duplicate projects so that our employees don't see how many hours we have estimated per task they have been assigned to. Please make it so that we can further filter what each user has access to.

We need an employee who runs lots of budget accounts to be able to log in and see what is spent in cost of sales under all the different tracking codes.
This would help them organise the budgets better and see what is spent and what is outstanding.
They don’t need to see sales or overheads or bank feeds.

They should also be able to set a budget for that tracking code if possible.

Users that can invoice out, view supplier invoices, and do general acccounts "data entry" actions without the ability to view the company bank feeds, this needs to be sensitive data for higher level users!!

One of the expense claim approvers for an organisation needs to have his expenses approved by the other approver. This is not possible - currently Xero does not require that he gets any approval. If I update his access to Submitter, then he is unable to approve the other employees expenses. Would greatly appreciate this feature being added.

This is totally critical to any growing business. Segregation of duties is essential

To my horror, I have just "accidentally" discovered that all purchasing staff have access to see payments made all employees, via contacts. They don't even have to have a level of access as high as standard user, just access to purchases within the invoice level. I am horrified. As an absolute minimum this should be explained alongside the tick box in the permissions screen. In my mind, only users with access to payroll should have any way of seeing this incredibly sensitive, and what should be confidential, information. It is bad enough that the user roles are so unrefined, but having access to certain payroll information, hidden behind a "purchasing" façade is beyond belief. To clarify, I opened up a support case and a Xero representative has confirmed that this is, indeed, the case.