This article applies to:
OS: All supported operating system
Product edition: inSync Cloud and On-Premise
Overview
The Allow admin access to user data setting on inSync Client controls whether the administrator can access the user data. When this setting is enabled from the inSync Management Console, inSync administrators can download the user's backed-up data.
This article describes the impact that Allow admin access to user data setting has while switching a user from one profile to another.
To view or to modify this setting, you can go to the profile, click on Edit ➜ General ➜ User Privacy & Access
This is the default status of these settings -
Enabled (ticked) - Allow admin access to user backup data
Disable (unticked) - Allow users to edit data privacy settings
For the sake of simplicity, Profile-1 is considered as an old/original profile and Profile-2 is considered as a new profile in this article.
User profile changes impacted by Allow admin access to user data settings
The impact is explained with the help of various scenarios below.
Scenario 1 - User is moved from Profile-1 to Profile-2 with the profile settings as below -
Profile | Allow admin access to user data settings |
Profile-1 | Enabled |
Profile-2 | Enabled |
Impact: User migration from Profile-1 to Profile-2 completes seamlessly on inSync Management Console without any warnings or error messages. The inSync administrator can access and download the user data even after the profile change.
Scenario 2 - User is moved from Profile-1 to Profile-2 with the profile settings as below -
Profile | Allow admin access to user data settings |
Profile-1 | Enabled |
Profile-2 | Disabled |
Impact: User migration from Profile-1 to Profile-2 completes seamlessly on inSync Management Console without any warnings or error messages. The inSync administrator cannot access and download the user data in the changed profile (Profile-2). If the administrator tries to access the user's data assigned with Profile-2, the below warning is displayed.
Scenario 3 - User is moved from Profile-1 to Profile-2 with the profile settings as below -
Profile | Allow admin access to user data settings |
Profile-1 | Disabled |
Profile-2 | Enabled |
Impact: In this migration, the administrators of Profile-2 can get an unintended access to the user's data if the user migrates to the profile. To prevent this breach of data privacy inSync does not allow the user migration from Profile-1 to Profile-2.
The below error is displayed -
To enable the data access and download, administrators can request the user to disable the Data Privacy setting from the inSync Client.
💡 Tip
The Data Privacy setting is active on the inSync Client only when the inSync administrator has made it available to the inSync user from the profile settings.
The same can be done from the inSync end user login portal -
Once the end user logs into the above portal, click on the 3 dots and click on “Edit Data Privacy Settings” -
Click on the checkbox as shown below and click on save changes -
Scenario 4 - User is moved from Profile-1 to Profile-2 with the profile settings as below -
Profile | Allow admin access to user data settings |
Profile-1 | Disabled |
Profile-2 | Disabled |
Impact: Since there is no breach of user's data privacy, migration from Profile-1 to Profile-2 completes seamlessly on inSync Management Console without any warnings or error messages. The inSync administrator cannot access and download the user data after the profile change.
Scenario 5 - inSync Client is installed on a new device and the user is assigned with a profile with Allow admin access to user data disabled.
Impact: After inSync Client activation, the user can access data on the new device. The user can login to inSync web to see the data from both the devices. The inSync administrator, however, cannot access the user data as the Allow admin access to user data setting is disabled on the client.