Predefined Duty Roles

To facilitate the management of related information, all the function security privileges and data security policies required to secure the workers REST API are delivered through predefined duty roles. You can also define your own custom roles and grant appropriate duty roles as per the standard security guidelines.

The workers REST API is secured with five logical groups of privileges. Each logical group is secured with two duty roles that control the permitted actions on the business objects in that group. One duty role has both View and Manage privileges for complete access to the group. The other duty role has View privilege for read only access to the group.

This table shows the logical group of privileges and the assigned duty roles. Click each group for detailed information.

Group	Predefined Duty Role
Personal	Use REST Service - Worker Details Use REST Service - Worker Details Read Only
Sensitive	Use REST Service - Worker Sensitive Details Use REST Service - Worker Sensitive Details Read Only
Personally Identifiable Information (PII)	Use REST Service - Worker PII Use REST Service - Worker PII Read Only
Employment	Use REST Service - Worker Employment Use REST Service - Worker Employment Read Only
External Identifiers	Use REST Service - Person Identifiers for External Applications Use REST Service - Person Identifiers for External Applications Read Only

This graphic shows the assigned duty roles for each logical group.