...
| Anchor | ||||
|---|---|---|---|---|
|
New Features (Product Level)
Design Flaws (Product Level)
Configurable
None
| Anchor | ||||
|---|---|---|---|---|
|
Configurable: Yes
Title: Enable Confidentiality
Public/Private: Public
Default: Yes, (but permission driven).
Existing System: Currently, we can't mark an assessment as 'Confidential'Does not have the feature to hide any risk assessments that requires privacy. So such type of risk assessments are deleted from the system (if already completed) and managed elsewhere to avoid disclosure.
Purpose: To be able to tag few designate Risk Assessments as “Confidential” in within the application with , ensuring access is restricted only to authorized users.
Enhanced System:
...
User would be able to mark a Risk Assessment “Confidential”.
...
Confidential Risk Assessments will not have the option to be part of corporate library.
...
In Mobile, confidential risk assessments will not appear.
...
User would have the option to pick the authorized users who can access the assessment.
...
For a confidential Risk Assessment, data would be masked in list screen for all unathorized users.
...
As the title will be masked, we have added the Risk Assessment Id as mandatory column with a hyperlink.
When can you make a risk assessment confidential?
A risk assessment can be categorized as confidential at any stage in the assessment's workflow
Record-level security permission
When the custom setting for this feature is turned on, a new permission 'record level security' will be shown in the permission screen.
Users with this permission will be able to see the 'confidentiality details' section in the assessment details screen
...
Assessment Details Screen
A new section 'confidentiality details' will be shown in the assessment details screen if user has the 'record level security' permission
This section will have two fields:
Would you like to make this risk assessment confidential?
Authorized Team
New Notification: An immediate notification will be sent to the authorized users when a risk assessment is made confidential.
...
Manage Risk Assessments List Screen
Authorized Users:
'Risk Assessment ID' link remains enabled with complete data shown in all the columns of the grid
Unauthorized Users:
'Risk Assessment ID' link will be disabled.
'Title' will be masked with text 'Confidential'.
'Status' and 'Assessment Date' columns will show the details
Unauthorized users cannot delete the record even if they have the delete permission
...
New column in risk assessment list view: New column authorized users is availabe for selection in the Manage Risk Assessments list screen.
Action Items: Data shown in the field 'Source Title' will be masked with text 'Confidential' for the action items linked to the confidential risk assessments.
...
Calendar > Manage Action Items List Screen
Data in the column 'Source Title' will be masked with text 'Confidential' for all the Action Items linked to confidential risk assessments
'View Source Details' link in 'Reference' column will be disabled for the Action Items linked to confidential risk assessments
...
Module Reports: **CONFIDENTIAL** label is added to all the system reports for confidential risk assessments
...
Mobile: Confidential risk assessments will not be available on the Ideagen EHS mobile app.
Corporate Library: Confidential risk assessments cannot be added to the corporate library.
Cross Module Integrations: Risk assessment data populating in picklists in other modules like Incident Management and Apps
...
will also be masked.
...
Action item source details are also masked for confidential risk assessments.
...
A new risk assessment notification will be triggered for authorized users.
...
Impacts: Reports, CognosReport Central: Confidential risk assessment record(s) will be hidden in Report Central.
Insight: Confidential risk assessment record(s) will be available in Insight. However, you can use the new field 'Confidential Risk Assessment' in the data model to filter out the confidential risk assessments.
| Anchor | ||||
|---|---|---|---|---|
|
...