A comment posted on an earlier blog post about setting user permissions got me to thinking.
You can set up user permissions on a module by module basis, and you can specify whether a user can have entry/edit privileges or printing privileges, or both, for any given module.
But you apparently can’t completely lock a user out of a module. They can still open up the center and see data there — albeit on a limited scale.
For example, if you do not give a user permission for sales and A/R functions, they cannot see invoices or sales receipts or other customer transactions. But they can go into the Customer Center and see the list of customers. They can see the customers’ phone numbers and addresses.
In the case of employees, you can see not only employee names and addresses, but you can also open attached documents for employees even if you’re not supposed to have access to any payroll privileges.
Why is that? The blog commenter wanted a workaround for this and I had none to give. I suggested that they submit some online feedback within the QuickBooks Help menu about that — perhaps Intuit will implement a more rigorous permission scheme into a future version.
Does anyone else have a good workaround in the meantime?