Branch Access Control

Branch access control in Sederly allows you to manage user permissions across multiple business locations. This guide covers how to configure, assign, and manage branch-specific access for your team.

## Branch Access Overview ### Understanding Branch Access Branch access control determines: - **Which branches** a user can access - **What permissions** they have at each branch - **Data visibility** across different locations - **Reporting scope** for multi-branch analytics ### Access Control Levels #### Branch Assignment Types: - **Primary Branch**: User's main working location - **Secondary Branches**: Additional accessible locations - **All Branches**: Access to every branch in organization - **No Branch Access**: User cannot access any branch data #### Permission Levels per Branch: - **Full Access**: Complete control over branch operations - **Operational Access**: Day-to-day operations without administrative functions - **View Only**: Read-only access to branch data - **Reporting Access**: Can generate reports for the branch - **No Access**: Cannot access branch data ## Configuring Branch Access ### Setting Up Branch Access #### Accessing Branch Settings: 1. **Navigate to Users**: Go to Settings > Users 2. **Select User**: Click on user to edit 3. **Find Branch Access**: Locate branch access section 4. **Configure Access**: Set branch permissions 5. **Save Changes**: Apply branch access settings #### Branch Assignment Process: 1. **Select Primary Branch**: Choose user's main location 2. **Add Secondary Branches**: Include additional accessible branches 3. **Set Permission Level**: Choose access level for each branch 4. **Configure Data Scope**: Determine what data user can see 5. **Set Time Restrictions**: Add time-based access limits if needed ### Branch Permission Matrix #### Creating Permission Matrix: For each user and branch combination, configure: - **Orders**: Can create, view, edit orders at this branch - **Customers**: Access to customer data for this branch - **Products**: Inventory and product access for this branch - **Reports**: Reporting capabilities for this branch - **Settings**: Administrative access for this branch #### Example Configurations: **Store Manager (Primary Branch):** - Orders: Full Access - Customers: Full Access - Products: Full Access - Reports: Full Access - Settings: Full Access **Store Manager (Secondary Branch):** - Orders: View Only - Customers: View Only - Products: View Only - Reports: Full Access - Settings: No Access **Staff Member:** - Orders: Create/Edit (own orders only) - Customers: View/Edit basic info - Products: View Only - Reports: Basic reports only - Settings: No Access ## Multi-Branch Scenarios ### Common Business Scenarios #### Retail Chain: - **Store Managers**: Full access to assigned store, view access to others - **Regional Managers**: Full access to all stores in region - **Corporate Staff**: View access to all stores for reporting - **Store Associates**: Access only to assigned store #### Service Business: - **Service Technicians**: Access to assigned territories/branches - **Dispatchers**: View access to multiple branches for scheduling - **Branch Supervisors**: Full access to assigned branch - **Mobile Workers**: Temporary access to various branches #### Franchise Operations: - **Franchise Owners**: Full access to owned locations only - **Corporate Support**: Limited access to all franchises - **Regional Coordinators**: Access to franchises in assigned region - **Shared Services**: Specific function access across multiple locations ### Traveling Staff Management #### Mobile User Configuration: 1. **Primary Branch Assignment**: Set home base branch 2. **Temporary Access**: Grant time-limited access to other branches 3. **Mobile Permissions**: Configure permissions for mobile access 4. **Location Tracking**: Monitor which branches user accesses 5. **Automatic Expiration**: Set automatic expiration for temporary access #### Temporary Access Process: 1. **Request Access**: User or manager requests temporary branch access 2. **Approve Request**: Manager approves access request 3. **Set Duration**: Define how long access will last 4. **Grant Access**: System provides temporary access 5. **Monitor Usage**: Track temporary access usage 6. **Automatic Removal**: System removes access when expired ## Data Isolation and Security ### Branch Data Isolation #### Data Segregation: - **Customer Data**: Customers associated with specific branches - **Order History**: Orders tied to branch where created - **Inventory Data**: Stock levels specific to each branch - **Financial Data**: Revenue and expenses by branch - **Staff Data**: Employee information by assigned branch #### Cross-Branch Data Access: - **Shared Customers**: Customers who visit multiple branches - **Transfer Orders**: Orders transferred between branches - **Consolidated Reporting**: Combined data from multiple branches - **Inventory Transfers**: Stock movements between branches ### Security Considerations #### Access Control Security: - **Principle of Least Privilege**: Minimum necessary branch access - **Regular Access Reviews**: Quarterly review of branch permissions - **Audit Trails**: Log all branch access and data views - **Separation of Duties**: Divide critical functions across branches - **Emergency Access**: Procedures for emergency branch access #### Compliance Requirements: - **Data Privacy**: Ensure compliance with privacy regulations - **Financial Reporting**: Maintain proper financial controls - **Audit Requirements**: Support audit and compliance needs - **Geographic Restrictions**: Handle location-based data restrictions ## Reporting and Analytics ### Branch-Specific Reporting #### Report Scope Control: - **Single Branch**: Reports for one specific branch - **Multiple Branches**: Combined reports for accessible branches - **All Branches**: Organization-wide reports (if permitted) - **Comparative Reports**: Performance comparison between branches #### Available Reports: - **Branch Performance**: Sales, revenue, and performance metrics - **Cross-Branch Analysis**: Comparison between different branches - **User Activity**: Branch access and usage patterns - **Inventory Reports**: Stock levels and movements by branch - **Customer Analytics**: Customer behavior across branches ### Multi-Branch Analytics #### Key Metrics: - **Branch Performance**: Revenue, orders, customer count by branch - **User Productivity**: Staff performance across different branches - **Cross-Branch Trends**: Patterns and trends across locations - **Access Patterns**: How users access different branches - **Security Metrics**: Access violations and security events ## Best Practices ### Branch Access Management #### Access Assignment Guidelines: - **Role-Based Assignment**: Use roles to determine branch access - **Business Need Basis**: Grant access based on actual business needs - **Regular Reviews**: Quarterly review of branch access assignments - **Documentation**: Document reasons for branch access decisions - **Change Management**: Formal process for access changes #### Operational Excellence: - **Clear Policies**: Establish clear branch access policies - **Training Programs**: Train staff on branch access procedures - **Support Processes**: Provide support for access-related issues - **Monitoring Systems**: Monitor branch access usage and violations - **Continuous Improvement**: Regularly improve access control processes ### Common Mistakes to Avoid #### Access Control Errors: - **Over-Permissioning**: Giving too much branch access - **Under-Permissioning**: Not providing necessary access - **Inconsistent Policies**: Different rules for similar roles - **Forgotten Temporary Access**: Not removing temporary access - **Poor Documentation**: Not documenting access decisions #### Management Issues: - **Irregular Reviews**: Not reviewing access regularly - **Manual Processes**: Relying on manual access management - **Lack of Monitoring**: Not monitoring access usage - **Poor Communication**: Not communicating access changes - **Inadequate Training**: Not training staff on access procedures ## Troubleshooting ### Common Branch Access Issues #### Access Problems: - **Cannot Access Branch**: User cannot see or access assigned branch - **Wrong Permissions**: User has incorrect permissions for branch - **Data Not Visible**: User cannot see expected branch data - **Report Errors**: Reports not showing correct branch data #### Resolution Steps: 1. **Verify Branch Assignment**: Check user's branch access settings 2. **Review Permissions**: Confirm permission levels are correct 3. **Check Data Scope**: Ensure data scope includes required information 4. **Clear Cache**: Clear browser cache and refresh 5. **Test Access**: Test access with different user account 6. **Contact Support**: Get help for complex access issues ### Getting Help #### Support Resources: - **Branch Access Documentation**: Detailed guides and procedures - **Video Tutorials**: Visual demonstrations of access configuration - **Support Team**: Direct assistance with complex access scenarios - **Best Practices Guide**: Proven approaches to branch access management ## Quick Reference ### Branch Access Levels - **Full Access**: Complete branch control - **Operational**: Day-to-day operations - **View Only**: Read-only access - **Reporting**: Report generation only - **No Access**: Cannot access branch ### Common Configurations - **Store Manager**: Full access to primary branch, view access to others - **Regional Manager**: Full access to all branches in region - **Staff**: Access only to assigned branch - **Corporate**: View access to all branches for reporting