The Administrator can use the User Access setting to control the visual access a user has to goals and records in the database. This can be achieved by right-clicking on the Users name and selecting User Access in the People & Meetings workspace as shown below:
The following Visibility Types are options:
The setting called "Editing Rights” 
works in conjunction with the Visibility setting to determine the level of editing access the user has to visible records.
The options are:
| 1. | Read-Only, all records are red-locked except where the user is the creator and/or are assigned to the record. Red locks mean users can only view but not write to the record but can add Progress Updates, Todos, Documents, and Events. Additional controls have been put in place for users assigned with a "Read-Only" Editing Rights in the People and Meetings User Access window. “Read only” users have limited editing rights (yellow lock) access to goals to which they are assigned but cannot add, delete, promote, demote, copy, paste or import goals. |
In the example below, we are logged in as Cris G and you see the Admin is the creator of all three goals. Cris sees a red-lock on the goals he did not create and is not assigned to but he can add Progress Updates, Todos, Events, etc but can not edit any fields such as Requirements or Issues. Cris sees a yellow lock on the goal he is assigned to although he did not create it, on this goal he can also add Progress Updates, Todos, Events, and Documents and also has limited editing permissions to some of the goal fields such as Requirements and Issues.
| 2. | Limited Access, the “normal” mode. Records assigned but where the user is not the creator are yellow locked, records the user is not assigned to are red-locked |
| 3. | Full Access, the same type of access given to an administrator (without the extra visibility to database management functions). All records that are visible to this user are unlocked. |
More on Visibility
Administrator
Access to all groups, all users and all functionality. Users assigned an Administrator type have full read/write rights across all goals/records (except those marked private) within the database. This includes across all user or business groups that have been configured.
Enterprise Manager
Read-only access to the entire database, apart from records marked private and those assigned to the Enterprise user, People & Meetings access is limited (cannot change certain fields), no admin functions.
Business Groups Manager
Access to a selection of Business Groups and all users within these groups. Selective limited access to People & Meetings. No Admin functions unless the Business Group Manager is granted Full Access. They are also able to view, in a read-only mode, all goal records in the GAPR view across all Business Groups, not just the one to which they are a member of. This allows them to have an overview perspective across different projects and people within their Business Group.
Direct Report Manager
Access to “-Direct Reports” pseudo-group only. Access to a selected list of users. Selective limited access to People & Meetings. No admin functions.
User
User, access to their own records only, no People & Meetings access, no admin functions.The Administrator, Enterprise Manager and Business Group Manager types can also have a “-Direct Reports-“ list.
Note
| • | The Administrator, Enterprise Manager and Business Group Manager types can also have a “-Direct Reports-“ list. |
| • | Users who are defined with “User” access with "Limited Access" do not see the User-filter toolbar at all and the People & Meetings tab is not visible. |