Permissions | Contacts - Private or limited access to certain contacts
It would be great if it is possible to make a contact private in order to limited the users who has access to a contact, especially when the contact contains private information that should not be accessible by all users.
-
Alicia Morgan commented
has this been revolved
-
Michael van Zwanenberg commented
This is a GDPR issue for UK users and needs fixed asap! XERO PLEASE LISTEN TO YOUR USER COMMENTS. Thanks.
-
Olivia Wilcox commented
I need a way of assigning a sales rep ful access just to her customers and no access to any other contact.
-
M N Mollon & Partners Ltd commented
Please make it possible to restrict contact's financial details and past salaries/bills/invoices.
-
Sheldon King commented
Please add the ability to restrict access to Contacts (or anywhere else that Xero stores Personally Identifiable Information) by User or by Role so that business users can meet their privacy obligations.
Xero does not readily support Australian users in complying with the Privacy Principles, and does not support business to be compliant with the European GDPR rules around data disclosure. It fails to allow business to apply the Principle of Least Privilege to User setup which leads to the ready inappropriate disclosure of Personally Identifiable Information.
This is because it is not possible to restrict access to Contact information on a Per User or Per Role basis.
The example that has given rise to this request is in a mental health practitioner's business where their accountant can see all of their billed Contacts information when working on their Xero instance - thereby creating a confidentiality issue and breaching their privacy.
This concern equally applies to law firms, medical practitioners, IT outsourcers, or indeed anyone else whose Contact list is sensitive (ie pretty much everyone). It means they cannot use Xero for Invoicing or Bills and still provide accountant access if they wish to maintain the privacy of their clients and creditors.
If you're still reading, here's some boring Privacy stuff that was included in the Xero Central report case I started only to be told "you have to policy and process your way out of this issue."
>>As part of our GDPR project, we worked with our product and security teams to identify and make any necessary changes/improvements to our product for GDPR compliance. We didn't identify the user role functionality as needing to be updated for GDPR and believe them to be compliant with GDPR and Australian privacy regulations, including the Privacy Act (1988) and Privacy Amendment (Notifiable Data Breaches) Act (2017).
The Australian Privacy Act is a tricky one because it basically is a list of gentle suggestions.
Nonetheless, Xero in its current form is sketchy around (amongst others) Principle 6 - use or disclosure of personal information. This states:
"6.1 If an APP entity holds personal information about an individual that was collected for a particular purpose (the primary purpose), the entity must not use or disclose the information for another purpose (the secondary purpose) […]"
It also fails to adequately support business attempting to comply with Principle 11 — security of personal information:
"11.1 If an APP entity holds personal information, the entity must take such steps as are reasonable in the circumstances to protect the information:
from misuse, interference and loss; and
from unauthorised access, modification or disclosure"The GDPR is more explicit:
Article 25, Section 2, Paragraph 1:
"The controller shall implement appropriate technical and organisational measures for ensuring that, by default, only personal data which are necessary for each specific purpose of the processing are processed."
With Xero, we can't if we want to both use Invoicing or Bills, complete contact information for same and provide access to an accounting professional.
-
Jarrad Ferris commented
Agree, we have made our employee have draft only sales access because of this, but now we cant collaborate invoices and quotes there should be an option to give users access to specific invoices & quotes only not the total sales in and out
-
Debbie Haines commented
This is actually quite a major issue not being able to keep Staff records and salaries separate from limited users in Xero and also Directors payments.
I am surprised this hasn't been kept under a section in the payroll area only allowing those who can access payroll to see it and also surprised Xero haven't dealt with this as a important issue. -
John Hatzakis commented
This is something our organisation would benefit from
-
Ramila Jasmath commented
Make it possible to give a user access to a specific group in contacts? They should only have access to add or amend contacts for a specific group. EG: a sales rep adding contacts to a sales group and having access only to that group.
-
Lee Davenport commented
I agree, certain financial information contained within some contacts should not be viewable by other members of staff that are not privy to this information.
-
Shan Randhawa commented
The money out over the last 12 months graph on the contact page is visible to users with limited permissions. This needs to be fixed ASAP. It should at least be something we can turn off. Or give us the ability to mark certain contacts as confidential.
-
Rudi Heystek commented
Hi guys, this is a serious issue that needs to be resolved asap! We have been using Xero for about 3 years now and was shocked to find out today that a limited rights user still has access to a Salaried employee contact and able to view their monthly Salary being paid via the Money in and out over last 12 months graphs under the contact.
-
Paul Randall commented
Although certain staff have "Invoice Only ( Purchases ) " permissions, they can still see sensitive contacts such as Company Directors and other staff in the contacts list and can then see the " money in and out " bar graph which when you hover over it shows the amounts paid. There needs to be a way to hide these details, Its just not secure as it is.
-
Susan Vallis commented
My organisation would greatly benefit from being able to have certain contacts private from certain users. We employ contractors for some senior roles and would like to use this feature for this purpose if it becomes available in the future. Without it I am left in an awkward situation where accounts payable staff can view confidential information.
-
Alida Odendaal commented
Security risk for employees working on a company to view each other’s salary payments as well as directors payments as all is reflecting under activities tab in contacts. Cannot block the user not to have access to contacts as they must process invoices etc.