Issues with Impersonate and access to Billing Management
I have discovered that if you impersonate someone who has the Billing Clerk role, you will have full access to Billing Management based on the Billing Clerk permissions that the user you are impersonating has.
Also, anyone impersonating a parent will be able to see their billing information.
This is a really big deal for us. I would have thought that billing management would work like the nurses office and only users with a certain employment role would be able to see billing information. For example, you cannot see medical information if you impersonate a parent or if you impersonate an employee with the nurses role.
Ideally, impersonating a billing clerk would not give you access to parent accounts or the billing mgmt module and impersonating a parent would not give you access to their account information.
Currently we use the impersonate role for Admissions to help candidates, some advancement folks who are helping alumni and a select group of admin assistants who support parents.
-
Kathleen Peak
- Nov 4 2021
- Shipped
Related ideas
This should be part of https://blackbaudk12.ideas.aha.io/ideas/K12CO-I-63
You can extend that idea to the fact that there is no where for Counselors to input information regarding a student that only a chosen few should see. The roles need to be more specific. A person that is chosen to be Platform Manager (controlls the system)then selects the areas people can see
https://webfiles.blackbaud.com/files/support/helpfiles/education/higher-ed/content/bb-core-impersonate-user.html
This says Platform Managers when impersonating will not be able to see sensitive information like credit card, social security etc..
upvote