Proper governance controls are a delicate balance. Too many restrictions can grind a business to a halt, slowing down progress because administrators spend too much time managing access and users spend too much time requesting it. Conversely, too much flexibility creates a sticky situation where individuals with lower levels of security could inadvertently access documents or protocols that aren’t meant for their eyes.
Ultimately, governance boils down to a company’s specific needs. With this in mind, we’re excited to announce new features that make implementing that governance easier and more configurable than ever before.
Since day one, the DevonWay platform has supported record-level access through the configuration of reporting authorities. Every data record in the system is associated with a reporting authority, as are user roles. The combination of role and reporting authority determines what users can see and what they can do.
Many use cases, however, require more fine-grained access controls. For example, specific records within a reporting authority may need to be marked as Official Use Only if they contain certain protected data. The new access control features let the system automatically determine the whitelist of persons who have access to those more protected records, while continuing to allow access to any non-protected records allowed by the user’s role and reporting authority.
Overall, the backend improvements will allow our customers to have more robust, finetuned control over confidential data. As with many of our features, to ensure backwards compatibility this has to be configured on a customer-by-customer basis, so please contact us if you wish to learn more.
Subscribe to our monthly newsletter for updates on future releases, upcoming features, tips and tricks, and more.