Data Minimization

OpenAir provides a Role Based Access Control (RBAC) model to set up authorization policies for users. These policies control the functionality available to users and can be set up by customers to enforce separation of duties. Filter sets can be used to control what data the user can view or update. See The Security Model and Roles Overview.

Form permissions can be used to control what information is captured on many OpenAir entity forms. This functionality can be applied to both built-in and custom fields. See Form Permissions.

User scripts can also be used to ensure the data collected is sufficient and limited to what is necessary.