Forum Discussion

Jojo7's avatar
Jojo7
Experienced User
1 year ago

Payroll security

We find it extremely concerning that despite certain roles within MYOB having no access to payroll privileges, it appears users can access payroll/employee information through the contact log of the employee cards, they can export employee information and they can access customised payroll reports through the custom reports tab leaving employees/employers open to security issues.

 

I have read a couple of the "recommended" fixes for the contact log issue but it is hardly a solution!

The usage of this platform is becoming so limited because the privileges within the roles are not well enough defined by any standards. 

Just a few examples........

*Sales and dispatch staff are unable to use the Contact Log function for customer cards because we have to remove that privilege to protect employee information stored in the employee card file.

*Sales staff can no longer utilise the My Custom Reports or they will have access to any number of custom payroll reports that have been created (again breaching employees security) as they will do any other customized reports.

*The office administrator, who is responsible for the import/export of inventory items to maintain our pricing can no longer have access to the import/export function due to the ability to export employee cards and information when they do not have payroll privileges as part of their role. 

 

4 Replies

  • Earl_HD's avatar
    Earl_HD
    MYOB Moderator
    1 year ago

    Hi Jojo7,

    Thank you for your post. We understand the importance of data security and role privileges. MYOB takes the privacy and security of our clients’ business data very seriously.

     

    Regarding your concerns about role privileges, each user in MYOB has one role, and a role gives a user access to a set of entitlements. Each entitlement gives certain permissions to the user to perform certain functions. Most entitlements give the user full permissions to all functions on that entitlement. Some entitlements provide restrictions to what permission the user has, such as Read-Only or Read & Write. An administrative user can use both ARL and MYOBB to manage user roles. KB

     

    We understand your concerns about the limitations you've encountered with the current role privileges setup.

    Feel free to post again if you have further queries and one of us will be happy to help!
    Regards,
    Earl

  • mdiblasi's avatar
    mdiblasi
    Experienced User
    2 months ago

    URGENT!! 

    We too are concerned an employee can access employee cards and view entitlements, wages, etc.

    This person does need to access 'Customer' and 'Supplier' cards only. Has MYOB changed access for employees who are not permitted to view any wages?

     

    Look forward to your reply.

  • Doreen_P's avatar
    Doreen_P
    MYOB Moderator
    2 months ago

    Hey mdiblasi,

     

    You can customise the role of your employee to only see Customer and Supplier cards without any access to employee details. To do this,

     

    • Go to Setup
    • Click on User Access
    • Select Manage Roles to customise the access level on each role

     

    Make sure to check out this link on setting up roles. Also, I've attached a screenshot below for your reference when selecting Customer and Supplier cards.

     

     

    Cheers,

    Doreen

  • mdiblasi's avatar
    mdiblasi
    Experienced User
    2 months ago

    Thanks Doreen

    I've doubled checked what employee can see. Concerns answered. I'm happy nothing is accessible. Thanks for your reply.

Looking for something else?

Search the Community Forum for answers or find your topic and get the conversation started!

Community home

Dig into MYOB Academy for free courses, learning paths and live events to help build your business with MYOB.