Keep your bank information protected
Author: Izaskun Ajuria Consultant Managed Services Functional @Quistor
It is out of question that holding personal and financial information is a challenging topic for ERPs. I would even say it is also a very dynamic one. The good practices and security standards from some authorities are often changing and getting stronger as the time goes by. Most common queries from our customers are related to how protect their sensitive data without too much customization (or none of it) in their JDEs while they are compliance with the newest security rules.
In this article, I would like to introduce you to one of the latest features in JDE that will allow you to get visually masked some bank information like IBAN (International Bank Account Number) or CBNK (Customer Bank account number). Although this was triggered by new NACHA Operating rules for US payments, it is my opinion that is a relevant feature to have that will increase your security without any customization.
What do I need to know?
- Feature is available as of JDE 9.2 Release 22.
- It impacts the following modules: Financials, HCM and Payroll, Localization and Sales Order Management.
- Masking of real-time customer bank information applies to Applications, Reports and even Data Browser way of displaying information.
- New application included to allow businesses to setup exceptions to this data mask per user/role or Program ID and controls, at the same time, if they have view or update rights.
Still interested, right? Keep reading!
Bank Master application will be shown as below by default for all users and roles (not setup as exceptions). This view will not disrupt the daily working routine as this is just a visual masking, so JDE will still be able to work with the bank account numbers as usual.
As previously mentioned, this mask is also extended to reports that use bank information like Automatic Payment groups:
However, Oracle includes an application that customers can use to set up the necessary exceptions to this bank masking since auditors, financial controllers, and managers may need to view this disclosed information. At the same time, you will always be in control of whether they have view-only or editing rights on the bank information, ensuring that only authorized people edit the bank information.
If you are interested to know more, or have any question, do not hesitate to contact Quistor.
Before you go
Feel free to ask us any question, ask for more information or simply say hello in this contact form.