Is there a User right setting for Attachments ?

Question

We would like to scan in all our contracts in attachments but don't want every user to be able to view it, is this an option ?

Comments

Is there a similar setting for attachments on a student account?

---

Tangential to this question, but equally important: can user rights be granted for each type of note individually?  Financial people shouldn't have access to principals' or therapists' notes nor should school secretaries have access to financial notes.

---

We should real split the notes in to a different topic. But in the example above, notes for financial is accounts notes that can be viewed in the account screen, while notes from principals' or therapists' are on the student and can only be viewed in the Courses screen. Also notes in the Courses screen have a privacy feature where only a principal or user entering can see it.

Answer 1

The real issue is a design issue. So even if we do create rights for the ability of opening these files thru the software users would still be able to browse in windows to the attachment folder and see all files.

So if they are highly sensitive this option would not be secure enough. So instead of giving a false sense of security we did not implement this yet.

What do you think?

Answer 2

https://jlssolutions.com/QA/1087/control-which-scanned-saved-attachemnts-deleted-viewed-user

Comments

So if they are highly sensitive attachments this option would not be secure enough as you mentioned above ? or that has changed since your last post ?

---

Not changed. You will still be able to view without our software thru windows.