Overview

Contact support@responsive.io to access this feature or request enablement.

The Restricted Access feature strengthens security and protects data in projects shared across Business Units (BUs), making it so users from shared BUs get limited access only.

This means that invited users can perform their assigned actions only instead of being granted full access based on their role, so:

• Users can't edit or delete sections beyond their assigned scope.
• Admins and Managers can't take over the project.
• Subject Matter Experts (SMEs) can't unintentionally perform administrative actions.

Sharing Levels

Complete Access for Primary and Secondary BUs

Users with an Admin role assigned to both the Primary Business Unit (PBU) and Secondary Business Unit (SBU) will have complete access to projects from both BUs. This is expected behavior as they have explicit access to both BUs.

Unintended Access to Shared Projects

Users with an Admin role assigned to only the PBU can gain unintended full access to a project or module from the SBU. This is a security risk as they inherit full access based on their role.

Restricted Access

Restricted Access applies only when users gain project access through Module Level Sharing (project sharing), not through User Level Sharing (direct BU sharing).

Enabling Restricted Access prevents users from gaining full control over the module; they're only able to view and respond to assigned questions.

Example

Restricted Access limits users from shared BUs to:

• Viewing assigned questions.
• Responding to assigned questions.
• Reviewing assigned questions (if added as reviewers).

They can't:

• Access the entire project.
• Modify project structure.
• Assign authors.
• Delete or export the project.