Enter your idea

Granular Access Control – Secure, Zero Trust Permissions
Control-C’s new security model introduces a level of granularity never seen before in managing access to your Xero financial data. Traditionally, giving an employee access to run an Aged Payables or Aged Receivables report meant exposing your entire financial landscape – including sensitive areas like your Profit & Loss, balance sheet, bank transactions, and even other employees’ bonus information. Xero’s native user roles are fairly broad (e.g. standard user or advisor roles grant wide access). Not anymore.

With Control-C’s Zero Trust-based security framework, you can now restrict access to just the specific data or reports your team members need – and nothing more. Want a staff member to run only the Aged Receivables report? You can grant that exact permission, without also giving away the rest of your accounting info. No more over-exposure or “all-or-nothing” access. For example, an accounts clerk can be set up to view and export customer invoices and aging reports, but cannot see the general ledger or payroll details. A junior bookkeeper could be limited to inputting bills and viewing the payables report, without any visibility of bank balances or management reports. You define roles at a fine-grained level – a stark contrast to Xero, where even a read-only user can see almost everything.

This precision access control is built from the ground up, aligning with modern Zero Trust security principles that assume no implicit trust – every access is explicitly granted and minimal. For accountants and compliance officers, this means better internal controls and cleaner audit trails. You can demonstrate that even within your organisation, sensitive financial data is only accessible on a strict need-to-know basis. For instance, an auditor or external accountant could be given a special “Auditor” role on Control-C: read-only access to relevant reports and the audit log, but nothing else. Meanwhile, your sales manager might have access to customer contact list backups (for business continuity) but not to any financials. These tailored permissions greatly reduce the risk of internal data leaks or unnecessary snooping.

For business owners, the benefit is peace of mind and professionalism. You no longer have to say, “I’ll give my assistant access to Xero, but I hope they don’t poke around the salaries or bank accounts.” Instead, you define their role on Control-C to exactly what they require (perhaps invoice creation and nothing else). It shows a commitment to confidentiality: employees see only what’s relevant to their job, which also reduces temptation and errors. And because the platform logs every access and download, you have a full audit trail of who viewed or exported data.

This Zero Trust security model is a unique selling point of Control-C’s platform. It effectively adds a new permission layer on top of Xero’s data, one that many businesses have long wished Xero itself had. By deploying it, you protect sensitive information by default while still empowering your team with the tools they need. The result is a more secure, compliant operation, where data access is precisely aligned with role and purpose – no more, no less.

If you would like to learn more visit Control-C.com or find us in the Xero App Store.

Yes, this would be great. Please implement.

I believe it should be a very important adjustment that should be made. Full access to reports but shouldn't be able to see Bank Accounts & Feeds.

Customize User role (Invoice only - Sales) , user invoice only and customize the access to generate AR aged report or AP aged report only. no need full access to report.

I have just logged a poor review on Trustpilot. Comments in here are not responded to and Xero never justifies ignoring this request.

Disappointing that this has not been implemented + there's no workaround.

Comments going back three years. I'll add my voice to those asking why this hasn't been implemented yet. It's such basic functionality.

Quite literally: how is a salesperson supposed to do their job without access to reports?

Why are we not even getting a response of any kind about this, there are thousands of customers who want this.

Xero - still tinkering with non-functional improvements to font styles, while basic, and desperately needed features are ignored. why hasn't this been done yet?

Can't believe this is still going on!!! We need a user to be able to raise invoices and then chase the overdue invoices by running the aged receivables report, enter their comments on same, instead, we have to get someone else with higher permission pull the report off and email report over and back, updating the comments, an absolute waste of time. Can't be that difficult to give access to a user with Invoice only - Sales access, the option to have editable access to Aged Receivable reports

XERO CAN YOU EXPLAIN PLEASE WHY THIS IS NOT ACTIONED, IT HAS BEEN REQUESTED MULTIPLE TIMES.

If the user permissions are not updated soon we will have to move to Quick Books or something else we cannot operate like this. To allow an Creditors Controller to print reports needed for reconsiling creditors we now have to give her access to our whole banking/accounting....what happened to confidentiality. Please Xero can you do something about this

It is a total waste of our time commenting or requesting sensible improvements to Xero as they fall on deaf ears. There are many other better accounting software providers who produce accounting software based on what their users need and want rather than just tweaking modules which work fine (sales invoicing etc) just for aesthetic purposes rather than functional purposes. The user profiles in Xero are appallingly limited and not fit for purpose.

There have been 145 votes on this, I am sure there are more customers out there needing this. Please stop changing functionality that works well already and make a much-needed change that will help NZ businesses. How can we grow if we can't have an admin person run reports and allocate payments to invoices for us without seeing the balance of the company's bank account!! This is just crazy!

Urgently need this feature implementing please - we have teams that need to run the aged debtors report, but they cannot have access to our bank accounts, but they currently cannot run these reports as they have to have access to the bank too which is crazy!

We require this feature asap.

It would be ideal for an Invoice only user to have access to reports relating to their restriction - for example a Purchases user (purchase orders and bills) needs access to the purchase orders detail report and is critical for some of our clients users to have some (relevant to their role), but not all, reporting functionality.

Xero please implement this for them asap

It would be advantageous if someone with Invoice Only user access could be given the option to view reports on Quotes/Receivables. Our users input quotes and sales invoices and have to report back to managers with which quotes are still open etc. If they could see the 'All quotes summary report' this would be really helpful. It would also be great if they could see the reports relating to Receivables. This could be an optional add on to the Invoice only role rather than standard access.

Surely a credit controller needs access to all aspects of invoicing information, without the requirement of full access to the bank account - this needs to be resolved Xero! Otherwise senior staff are having to run basic reports for employees which shouldn't be part of their role!
Please sort this one!

I have budget holders who need access to a specific custom report (and be able to see the underlying transactions) but that is all the user profiles do not restrict access enough to allow this so the user has far more access than they need/should have.
This means we send the reports via email and have to deal with any queries by enquiring ourselves, this is time consuming and very reactive and hinders budget holders taking ownership and understanding their own numbers.

It seems this matter has been raised several times. It would be most apprciated if there would be an option for a user to have Incoice only, but with access to reports including Aged Payables and Receivables - bringing them to the bills & invoices, but without giving them access to view the bank from there onwards.