I need to restrict access to personal information (personal phone and address) in the contacts application. I have set these sensitive fields as private and assigned specific groups such as the Facility Manager with read access to those fields. My challenge is that the Facility Manager should only see the private fields in contacts that are assigned to that Facility. There are over 300 Facility Managers so creating individual facility groups is not feasible.
Wondering if anyone has been successful deploying something similar.
Dear Kathy Vecchiarelli,
Just try this, create a Rule and add new Apply Condition Layout under Contact Application and select which fields to display (Read Only, Display, Do Not Display etc.), create a Facility group and assign the Apply Condition Layout to the group. I think this will work for your scenario.
Unfortunately, that would be only cosmetic change, because privacy wise, these fields will be visible over Advanced Search for example.
I would use RPs in Facilities, define Facility Manager there and make it to be inherited to Contacts app.
We have actually created a new application to hold the personal information and cross-referenced it from Contacts. This allows us to inherit permissions for managers, etc. down from contacts while still allowing all other users to see the business information in the contact record.
Ilya - thank you for your post. We did think of that but unfortunately because the Private Field allows anyone in the Facility group to see the data it does not meet our needs. I think David's idea would be the ideal solution.