16.5.1 Global Access Rules
The first thing to define is the Sharing Access rule for each of the modules. With what degree of freedom do you want the content of the modules to be accessible to users?
The most restrictive approach is Private, which will strictly follow the hierarchical roles (for visibility, creation, modification and deletion).
The Public approach has 3 levels of decreasing restrictions, therefore some privileges (visibility and/or creation and/or modification and/or deletion) will no longer be based on hierarchical roles, but will be open.
Public: read only
All users can access and view the module data. Only the assignee and users with a higher hierarchical role can publish, modify or delete data.
Public: read, create/edit
All users can view, create and edit the module data. Only the assignee and users with a higher hierarchical role can delete data.
Pubblic: read, create/edit, delete
All users can view, edit and delete data. With this setting the CRM is completely public.
Keep in mind that the behaviour of some modules implies the same induced behaviour of connected modules. For example, if the Accounts module is set to Private, Quotes, Tickets, Sales Orders, Purchase Orders and Invoices will also be in Private mode.
Messages and Notes allow you to set access privileges in a more systematic way. The sharing of the Calendar module differs in behaviour from the procedure of the other modules, and is analysed in detail in the relevant chapter. The sharing access settings cannot, therefore, be changed.