Hello all,
We are facing a hard time regarding the resource management topic. Let me describe the situation and what the desired functionality should look like. We want to know if we can somehow get this to work with out of the box functionality in caPPM without any hard customization. We have the feeling that we are not only company who is facing this issue. As it has kind of impact on the European GDPR. (currently running a caPPM 15.1)
TOPIC in a Nutshell:
Roles: |
Team Lead (TL) A |
Project Lead (PL) B |
Team (T) A |
Project Team (PT) B |
Situation:
PL B selects resources from TA via allocation
TL A needs to make hard allocations in order to confirm allocations
TL A can only do so when he is also given the same access rights as the PL B, which is definitely undesired.
TL A should only have the authorization to make the hard allocation of his resources in TA in a project he isn’t running / leading. Nothing else, no changes to the allocations, no further insights into the team, etc.
Problem 1: TL A can then not only make hard allocations, but by default also change allocations and even delete resources.
Problem 2: By default, TL A can then also see other resources, as he was given PL-rights which is a GDPR-problem (no need to know, hence breach of GDPR)
Solution:
Authorization concept should not contain the right to change anything in someone else’s project. TL always has only the right to make a hard booking and no one else (except admin or resource managers).
The system is so fragile in its handling that by coincidence it may be possible to change allocations, let alone the right to view other department’s resources and their booking should be deleted.
Thanks in advance for your help and greetings from Vienna,
Guido