Enhanced Personal Information Management #inSalesforce

on

To prevent external users, such as portal or guest users, from viewing other users’ personal information, enable Enhanced Personal Information Management. This feature replaces the Hide Personal Information setting and allows you to specify which fields are considered PII (Personal Info).

This provides the ability to prevent external users, such as portal or partner users, from viewing personal information in your user records.


Steps:

Set Up | Under User Management Settings | Disable the Hide Personal Information setting | Enable the Enhanced Personal Information Management setting.


For Example:

ABCUser can see and edit his own personal information, such as his address, email, and phone number etc. However, ABCUser can’t see XYZUser’s personal information. Similarly, XYZUser can edit his own personal information but not ABCUser’s.

Standard (by default) Example:

The way external users view a field like Mobile. If you made the Mobile field for external users viewable by your community users, then your users may be accustomed to viewing and referencing this field. Salesforce considers the Mobile field PII by default.

This secures fields by setting each field’s compliance category as 'PII' (Personal Info). Admin can choose which fields are considered personal information via field set.


Adjust the PII for fields that should not be classified as PII (as per need).:

  • Go to the field > suppose User | About Me (field) | Compliance Categorization > PII (Personal Info)(selected)
  • Once a field is set as 'PII' (Personal Info), it will be hidden from other external users.


Review or Verify:

Some of the fields are classified as personal information and hidden from external users by default.

  • Review the User fields classified as personal information and adjust what is considered PII by clicking the this field set link or going to: Setup > Object Manager > Users > Field Sets > PersonalInfo_EPIM.
  • Remove fields that your external users should have the option to see.
  • Classify only fields that contain user PII (Personal Info); for example, do not classify System fields.


Note : Test in a sandbox prior to enabling in Production.


Visual: https://www.youtube.com/watch?v=T_I-br_kcC8


Reference:

https://admin.salesforce.com/blog/2022/prepare-for-enhanced-personal-information-management-enablement-prior-to-winter-23

https://admin.salesforce.com/blog/2021/protect-user-pii-data-with-enhanced-personal-information-management

Comments

Post a Comment