Restrict Security Rights
Hi,
We are in the phase of moving all of our department data to RENXT. However, the biggest concern for everyone is the security. Each of the department is willing to grant other department access to view their data BUT they don't want them to see specific information such as Research note or Actions. They also don't want the other department to be able to run/export any list that contains their data either. But it doesn't look like it's feasible in RE in general at the moment. As long as they can VIEW the data, they can access the list in RENXT. Is anyone here in the similar situation and have a better work around system?
Thank you,
Wynnie
We are in the phase of moving all of our department data to RENXT. However, the biggest concern for everyone is the security. Each of the department is willing to grant other department access to view their data BUT they don't want them to see specific information such as Research note or Actions. They also don't want the other department to be able to run/export any list that contains their data either. But it doesn't look like it's feasible in RE in general at the moment. As long as they can VIEW the data, they can access the list in RENXT. Is anyone here in the similar situation and have a better work around system?
Thank you,
Wynnie
0
Comments
-
You can hide Notes by Note Type and Actions by Action Type in Security in the database view. The web view is supposed to honor that, although I have tested that specific setup. If you can't see something, then RE is supposed to respect that with output tools such as Query and Export -- and presumably Lists and Reporting as well. There is a good KB article on security by note type you should look at. But that's how you should start to go about resolving this need.
My presentation at bbcon next week is about Security in RE. Please consider coming.
I do always wonder what's the point of a shared database if people aren't willing to share their information. Are they being too protective, and this is counter-productive to your aims in getting them all in the same database?9 -
Hi Bill,
Thank you for responding back to me. The Note is just an example. Restricting someone from viewing a specific field as a user is not an issue. However, the issue restricting them from viewing certain information according to the Constituency Code.
Currently, I've categorized each fundraising department by Constituency Code and then use Security by Constituency Code to restrict viewing rights. I'll give you an example of our current situation:
The Corporate Sponsor department is only allowing the Individual Fundraising department to view their data only. They don't want the Individual Fundraising department to edit (which is no problem to configure) or run lists and reports which will contain data from the Corporate Sponsor department. However, the current setup in RE is that if they can VIEW the data, they can run lists.
I would love to attend your webinar. Can you send me the link to signup?
Thank you!
Wynnie1 -
Hi, Wynnie. You are correct, it is not possible to let someone view data in the constituent record but then not see it or use it elsewhere. When I've encountered this in the past, it's seemed there was too much politics and too little lack of trust. If people working in the same organization are professionals that can be trusted, it shouldn't be an issue. If they're not, well, should they be working there? There's always going to be types of data that people can do things with but they shouldn't, and it can't all be controlled with minute levels of security. Of course I can't speak to the situation at your organization and how big of a deal this should or should not be, but it's unlikely Blackbaud will ever prioritize this to make it a function. The request and legitimate need for it is too rare. And most users don't use the security options they have, let alone are begging for more granularity. But, of course, not my decision to make.
The session next week is part of bbcon and you can register here (free, and it's online): https://www.bbconference.com/ Hope to "see" you there!4 -
I'm running into the issue of trust in my organization. A new campus partner wants to record his relationships and conversations. He is in a position to raise a lot of money for his unit. I'm getting a lot of push-back from Advancement Services, saying we need a written policy and all kinds of restrictions. Do you have any examples of written policies and procedures?0
-
I don't know if this will help but for our migration, I wrote an agreement document for all departments to sign.
1. The pros, cons, and risks of data sharing and vice versa
2. The responsibilities of data protection
3. The number of users, names of users, and their title
Wynnie3 -
Wynnie, are you willing to share that document?0
-
This is a great idea Wynnie! I currently restrict who even gets access to the system. Once they are approved very clear guidelines are established. If they break them they run the risk of having their access taken away. I, inherited a database that was not clean and one where way to many people had access and rights. It was impossible to maintain! So we had to get a little tough and set clear policies and procedures with clear cut "penalties". Not fun, but we have seen a dramatic turnaround in the quality and accuracy of our data, not to mention that I have fewer gray hairs!0
-
Marilyn Shriver:
Wynnie, are you willing to share that document?Hi Marilyn,
What's your email? I can send you our current template. Hopefully it be able to help you a little bit.
Wynnie
0 -
Julie Lytle:
This is a great idea Wynnie! I currently restrict who even gets access to the system. Once they are approved very clear guidelines are established. If they break them they run the risk of having their access taken away. I, inherited a database that was not clean and one where way to many people had access and rights. It was impossible to maintain! So we had to get a little tough and set clear policies and procedures with clear cut "penalties". Not fun, but we have seen a dramatic turnaround in the quality and accuracy of our data, not to mention that I have fewer gray hairs!I feel your pain. When I inherited the database, believe or not EVERYONE had supervisor rights. It was quite scary.
But I do think that a guided document is definitely needed. I had to create one because we are migrating other department data to RENXT and everyone is sensitive about their data.
Wynnie
1 -
Hi, Wynnie –
Thanks for sending your document about rights restrictions. Very
much appreciated!Marilyn Shriver, CFRE
Director of Development
Advancement Division
Keene State College
Office: (603) 358-2371
Mobile: 603-209-9255
Fax: (603) 358-2400
0 -
Hi Wynnie,
May I please get a copy?
Thanks so much!
Jenny
Jenny
Stephens, bCRE-Pro
Director, Donor Analytics and Information Management
Development Office
T 626
396-2483 or C 818-396-2691
Jenny.Stephens@artcenter.edu
ArtCenter
College of Design
1700 Lida St.
Pasadena, CA 91103
www.artcenter.edu0 -
Hi Jenny,Here's the template I created.It's not a fancy document. The purpose of this form is to get
the agreement in writing and capture all the requested users.I hope this helps a little.Thanks,Wynnie0 -
Hi Marilyn,Here's the template I created.It's not a fancy document. The purpose of this form is to get
the agreement in writing and capture all the requested users.I hope this helps a little.Thanks,Wynnie0 -
Wynnie, was there supposed to be an attachment? I don't see anything.0
-
Wynnie, could I also get that template. We have no policies and procedures and I can use all the help I can get as I try to create some.
wolf@landinstitute.org
0
Categories
- All Categories
- 6 Blackbaud Community Help
- 213 bbcon®
- 1.4K Blackbaud Altru®
- 403 Blackbaud Award Management™ and Blackbaud Stewardship Management™
- 1.1K Blackbaud CRM™ and Blackbaud Internet Solutions™
- 15 donorCentrics®
- 360 Blackbaud eTapestry®
- 2.6K Blackbaud Financial Edge NXT®
- 656 Blackbaud Grantmaking™
- 577 Blackbaud Education Management Solutions for Higher Education
- 3.2K Blackbaud Education Management Solutions for K-12 Schools
- 939 Blackbaud Luminate Online® and Blackbaud TeamRaiser®
- 84 JustGiving® from Blackbaud®
- 6.6K Blackbaud Raiser's Edge NXT®
- 3.7K SKY Developer
- 248 ResearchPoint™
- 119 Blackbaud Tuition Management™
- 165 Organizational Best Practices
- 241 Member Lounge (Just for Fun)
- 34 Blackbaud Community Challenges
- 37 PowerUp Challenges
- 3 (Open) PowerUp Challenge: Grid View Batch
- 3 (Closed) PowerUp Challenge: Chat for Blackbaud AI
- 3 (Closed) PowerUp Challenge: Data Health
- 3 (Closed) Raiser's Edge NXT PowerUp Challenge: Product Update Briefing
- 3 (Closed) Raiser's Edge NXT PowerUp Challenge: Standard Reports+
- 3 (Closed) Raiser's Edge NXT PowerUp Challenge: Email Marketing
- 3 (Closed) Raiser's Edge NXT PowerUp Challenge: Gift Management
- 4 (Closed) Raiser's Edge NXT PowerUp Challenge: Event Management
- 3 (Closed) Raiser's Edge NXT PowerUp Challenge: Home Page
- 4 (Closed) Raiser's Edge NXT PowerUp Challenge: Standard Reports
- 4 (Closed) Raiser's Edge NXT PowerUp Challenge: Query
- 794 Community News
- 2.9K Jobs Board
- 54 Blackbaud SKY® Reporting Announcements
- 47 Blackbaud CRM Higher Ed Product Advisory Group (HE PAG)
- 19 Blackbaud CRM Product Advisory Group (BBCRM PAG)