Need to remove a user, but need to know if i can delete or have to make inactive based on the entries they have input into eramba. Will those inputs remain? Will those comments and reviews remain? If they are the POC assigned, how will that be affected?
documentation: Access Management
I came across this thread by coincidence, but it’s a really important topic in my view. The page you linked to says:
Deleting Accounts
If you delete an account that has items (Risks, Controls, etc.) assigned to the system, those items will become owned by the “Admin” user account.
This raises a few questions for me — particularly around accountability and traceability. What happens to all other areas where that user’s input matters, such as reviews they performed or comments they left?
Are these also reassigned to “Admin,” or are they deleted entirely? Personally, I would expect an ISMS/GRC system — where traceability of decisions and actions is critical — to preserve the original name of the user who performed an action, even after their account is deleted.
It would be great to get some clarification on how this works.
1 Like
yes, we are working on that, is now gone to “Admin” - which is not ok. We will be testing fixes next week and then we will have more updates.
1 Like
Thanks for picking this up!