Improve Privacy Controls: Prevent Reporting Managers from Accessing Payslips and other info #3013
Description
Is your feature request related to a problem? Please describe.
Currently in HR, if an employee is set to "Report To" a manager, that manager is automatically able to view sensitive documents like the employee's payslip and other personal records.
This behavior poses a privacy concern. Being a reporting manager shouldn't automatically grant access to payroll or HR documents unless the user also has an HR- or Payroll-specific role.
Describe the solution you'd like
There should be a configuration or permission control to limit this behavior. Only users with designated roles like:
- HR Manager
- Payroll Manager
- Users who initiated payroll (e.g. Salary Slip creator)
should be allowed to access employee salary slips and other sensitive documents.
Describe the alternatives you've considered
- Reporting managers can see employee names and status, but not detailed payroll/personal data by default.
- A permission setting (or a new permission rule) allows system admins to define who can access salary info.
- Greater control over employee data visibility for compliance and trust.
Additional context
No response