what are the ways to restrict access and give access?
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
yesterday
HR sitting in US should not get access to data of users in India and similerly HR in India should not get access to users in US?
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
4 hours ago
Hi @Prithvirajk,
You can handle this using standard ServiceNow best practices for data security. The common approaches are:
HR Criteria / Contextual Security: Use HR criteria to restrict which employee records HR agents can access based on attributes like location or region.
Role-based Access Controls (ACLs): Define region-specific HR roles and add conditions to limit visibility of records.
Domain Separation (if licensed): For strict data partitioning across geographies, domain separation ensures complete isolation of data.
Which option you choose depends on your licensing and business needs. For most HRSD implementations, HR Criteria + ACL conditions is the recommended and scalable approach.
Thanks & Regards,
Muhammad Iftikhar
If my response helped, please mark it as the accepted solution so others can benefit as well.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
4 hours ago
Hi @Prithvirajk ,
If you don’t want HR in the US to see India’s data (and the other way around), you need to separate access by region.
The easiest way is:
Add a field like Region or Country on users and on HR cases.
Give HR in India a role that only lets them see records where Region = India.
Do the same for HR in the US.
So basically, ServiceNow will check the user’s region and only show them the cases that match.
If your company already uses Domain Separation, then you can put India data in the India domain and US data in the US domain — and they won’t mix.
👉 In short: HR India only sees India cases, HR US only sees US cases.
