Confidentiality of GRC Compliance Case Management

莉奈明
Tera Contributor

Hello Community,

I have a question about the confidentiality of GRC Compliance Case Management.

Are there any OOTB function to control user access for each compliance case record, like confidentiality function?
If there are any OOTB function other than control by the 'assigned to' or 'assignement group' field , please let me know.

Any insights on OOTB capabilities, common implementation patterns (if OOTB is limited), or best practices for managing case confidentiality would be greatly appreciated.

Thank you in advance for your help!

1 REPLY 1

Ramya
ServiceNow Employee
ServiceNow Employee

Hi,
You can leverage the GRC Confidentiality feature to support this use case. OOB we have not enabled it, but you can configure with the below steps.

  1. Follow the KB to setup the Business rules, ACL's, display the fields confidential, Allowed users, Allowed Groups onto Compliance case forms. (You can form a New Section - Confidentiality). KB1497382 
  2. Create New Confidentiality Configuration for Compliance Case table. Follow the procedure as mentioned in this documentation. 
    https://www.servicenow.com/docs/bundle/yokohama-governance-risk-compliance/page/product/grc-common/t...
  3. Enable record level confidentiality property accordingly. For more information on Confidentiality feature please refer to the below Documentation
    https://www.servicenow.com/docs/bundle/yokohama-governance-risk-compliance/page/product/grc-common/c...

    Once this feature is enabled only members who are part of allowed users or allowed groups will be having access to the records. Please let us know if any further information is need.