Hello Jason,

Thanks for adding your view to this thread, and I agree that no company is immune to disgruntled employees. However, there are limits to what computer software can do to protect against that threat and still be usable. In my experience, more troubleshooting time is spent figuring out why software isn't working as expected due to high security settings, than problems with the application.

It's also true that no software development comes free. For efforts spent on increasing data security, we don't have those resources available to work on useful feature improvements.

Accounts Payable clerks need access to the general ledger to decide what accounts to allocate expenses to. You can prevent OrderEntry users from having access to Accounts Payable and its data.

The Adagio ExcelDirect button is one of its nicest features for someone in the accounting department. The trade-off is that it allows people to drop information that may be confidential directly into Excel. An organization has to evaluate letting users have access to the feature against the risk (you can turn the feature off on a person-by-person basis).

Password protecting and encrypting the data makes it difficult to have an experienced person help troubleshoot a problem at their site. And the severe consequence of losing the encryption key means that it must be stored somewhere accessible.

Adagio Receivables 9.3A will bring Adagio into line with the PCI-DSS standard for storing credit card information (it won't allow you to store credit card information in Adagio). Having a breach of that data is probably a bigger risk to an organization than someone unauthorized seeing your financial statements, but that's just a personal opinion.

Adagio Cloud has more robust security model with Adagio Manager, which can hide entire datasets from a user and only allows them to browse in specific directories.