Permissions setup

Frank uses Atlassian's native permission model to protect sensitive employee information. During setup, Frank creates a permission group that controls who can see confidential data like salary, contracts, and performance notes.

How it works

Frank creates a sensitive data access group. Members of this group can view fields marked as sensitive in employee profiles. Everyone else only sees basic employee information and their own profile.

Add HR staff and managers who need to see confidential information to this group. Regular employees see their own complete profile but only basic information about colleagues.

Setting up permissions

Go to Frank settings and find the Setup Permissions section. Click "Manage permissions" to configure who has access. Add people deliberately — you can always expand access later, but restricting it after the fact is harder.

Sensitive fields

When configuring custom fields for employee profiles, you can mark individual fields as sensitive. These fields only appear for users in the access group. Use this for compensation data, personal identification numbers, or anything else that should have restricted visibility.

Testing your setup

After configuring permissions, test by viewing an employee profile as a non-HR user. Confirm that sensitive fields don't appear and that the restrictions work as expected.