Skip to main content

Hi,

per DSGVO only admins should have access to inactive employees.

However in Personio unfortunately, supervisors can access their former direct reports per default.

Workaround is setting conditions at “custom” of view permissions for the supervisor role. But it’s so complicated and I’m really worried messing things up.

 

What is the best solution for this problem?

 

Best regards,

Larissa

Hi @Larissa Horst,

As you mentioned, one of the ways is to set up a condition at Custom, so you will be granted the View rights for, let’s say, Own, My reports and Custom for Public profile. In the Custom filter, you can add the Condition as ‘Status is not Inactive’, as shown in the following screenshots:

 

 

 

 

Another way is to remove the View rights for the Attribute Status so, they will be still able to see the Active employees but not for Inactive, Leave or Onboarding. Maybe this is the less convenient because the Supervisor wouldn’t be able to see their reports on Leave status but I didn’t want to miss the chance to share it.

For more information about this topic, you can visit our Help Center articles: 

I hope this helps, Larissa! Please let me know if you have further questions! 😃

Wishing you a lovely Friday! 🙌🏼

Best,

Zulema


Hi Zulema,

I followed exactly your first option and faced a major data breach: Supervisors were able to see all salaries of active employees. I mean at least they did not see the salaries of inactive employees LOL.

So your solution is not working.

 


Your reply