Who Gets to See What? Setting CRM Permissions Right – Advanzo Blog
Data Protection & Compliance

Who Gets to See What? Setting CRM Permissions Right

Who gets to see what in your CRM shapes data protection and trust. Here is how Swiss SMEs set permissions clearly and securely.
Michael Brunner
Michael Brunner
4 min read

Sooner or later, a CRM collects almost everything a company knows about its contacts: phone numbers, contract details, notes from sales conversations, and sometimes sensitive information about a person's financial situation. That is exactly why the question of who is allowed to see what in the system is not a minor technical detail, but a question of data protection, trust, and common sense. Setting permissions cleanly protects not only your customers, but also your own team from mistakes that can become expensive.

Why permissions are more than an IT question

In many small companies, the quiet default rule is: everyone sees everything. That is convenient as long as the team is three people who sit next to each other anyway. But as soon as external staff, interns, or partners come on board, convenience turns into a risk. The revised Swiss Data Protection Act (revDSG) requires that personal data is only accessible to those who actually need it for their work. This principle is called "privacy by default", and since September 2023 it is no longer a recommendation but binding law.

In concrete terms: an account manager needs access to their own deals and contacts. Whether they also need to see the pricing negotiations with a major client that a colleague is handling is a very different question. Permissions are therefore not a vote of no confidence in the team, but a protective measure for everyone involved.

A good permission structure doesn't follow the question "Who do we trust?", but the question "Who really needs this data to do their job?".

The principle of least privilege

The proven ground rule is called "least privilege": each person receives exactly as many rights as they need for their task, and no more. Instead of laboriously assigning individual permissions person by person, you are better off working with roles. A well-thought-out role structure might look like this:

  • Management: full access including reports, exports, and settings.
  • Sales: access to their own and team-assigned deals, contacts, and the pipeline.
  • Marketing: read access to contact lists and campaign data, but no view of contract values.
  • Support: access to contact data and history, but not to financial details.
  • External staff and guests: tightly limited, time-restricted access to clearly defined areas.

The big advantage of roles: when someone leaves the team or changes function, you change the role once instead of updating dozens of individual rights.

Handle sensitive fields with extra care

Not all data is equally sensitive. Fields with especially protection-worthy information, such as health details, creditworthiness ratings, or confidential notes, should be more tightly protected than a simple phone number. Many CRM systems allow permissions down to the field level. Use that where it makes sense, instead of blanket-locking or opening an entire module.

Common pitfalls in practice

Setting permissions once is not enough. In practice, typical mistakes creep in that undo all the effort:

  1. Orphaned accounts: former employees or freelancers still have active accounts. Every departure belongs on a checklist.
  2. Sprawling admin rights: out of convenience, too many people are given administrator status. Admin access should be the exception, not the rule.
  3. Forgotten exports: anyone allowed to export data can pull it out of the protected system. This permission belongs in few hands.
  4. No logging: without traceability, you can't determine in an emergency who accessed which data and when.

A simple countermeasure is regular review. Set yourself an appointment twice a year to go through all roles and access rights. Half an hour is often enough to clean up outdated permissions.

Security starts with the right platform

As important as the configuration is, it stands or falls with the foundation. Where does the data physically reside, and how transparently does the provider handle access? For Swiss SMEs, it matters whether customer data is hosted domestically and whether permissions can be managed clearly without a computer science degree.

This is exactly where Advanzo comes in: an AI-powered CRM with data hosted in Switzerland, clear roles, and an interface that follows the guiding idea "remove complexity, not add it". AI features such as email generation, deal scoring, or automatic conversation summaries work within the same permission logic, so convenience never comes at the cost of control. Whoever defines cleanly from the start who is allowed to see what builds a CRM that grows with them, without turning into a data protection construction site.

Ready to simplify your sales?
Sign up today
Advanzo CRM

More posts

Data Protection as a Sales Argument: Trust Closes Deals – Advanzo Blog
Data Protection & Compliance
Data Protection as a Sales Argument: Trust Closes Deals
How Swiss SMEs turn data protection from a tedious obligation into a real sales argument and build trust that speeds up deals.
Andrea Schmid
Andrea Schmid
4 min read
Why Data Residency in Switzerland Is a Real Advantage for SMEs – Advanzo Blog
Data Protection & Compliance
Why Data Residency in Switzerland Is a Real Advantage for SMEs
Where your customer data sits is not a technical footnote but a strategic decision with real advantages for Swiss SMEs.
Dewi Santoso
Dewi Santoso
4 min read
Cloud, Private Cloud or On-Premise: Which Model Fits You? – Advanzo Blog
Data Protection & Compliance
Cloud, Private Cloud or On-Premise: Which Model Fits You?
Cloud, private cloud or on-premise: what the three models really mean for data protection, cost and effort, and how to choose.
Ethan Walker
Ethan Walker
4 min read
What Happens to Your Data When AI Comes Into Play – Advanzo Blog
Data Protection & Compliance
What Happens to Your Data When AI Comes Into Play
What happens to customer data once AI starts working inside your CRM? A pragmatic guide for Swiss SMEs on data protection and control.
Rachel Tan
Rachel Tan
4 min read
Managing customer data securely: a guide for small teams – Advanzo Blog
Data Protection & Compliance
Managing customer data securely: a guide for small teams
How small teams can manage customer data securely and in line with the Swiss DPA: a pragmatic guide with clear steps instead of security theatre.
Dewi Santoso
Dewi Santoso
4 min read
DSG, GDPR and CRM: What Swiss Companies Need to Know – Advanzo Blog
Data Protection & Compliance
DSG, GDPR and CRM: What Swiss Companies Need to Know
How Swiss SMEs can run their CRM in a legally compliant way: DSG, GDPR and AI explained clearly, with concrete steps for everyday use.
Maya Johnson
Maya Johnson
4 min read
Responsible AI in Customer Interactions – Advanzo Blog
Data Protection & Compliance
Responsible AI in Customer Interactions
What responsible AI in customer interactions comes down to: transparency, data protection and people as the final say.
Daniel Widmer
Daniel Widmer
4 min read
Local Proximity as a Competitive Advantage Over Global Providers – Advanzo Blog
Data Protection & Compliance
Local Proximity as a Competitive Advantage Over Global Providers
How Swiss SMEs use local proximity, data hosted in Switzerland and personal relationships as a competitive advantage against global providers.
Marija Stojanovska
Marija Stojanovska
4 min read
CRM for Insurance Brokers: Uniting Advice and Compliance – Advanzo Blog
Data Protection & Compliance
CRM for Insurance Brokers: Uniting Advice and Compliance
How a CRM for insurance brokers documents good advice, keeps deadlines and meets compliance without losing closeness to the client.
Maya Johnson
Maya Johnson
5 min read
The Revised Data Protection Act (revDSG) and Your CRM – Advanzo Blog
Data Protection & Compliance
The Revised Data Protection Act (revDSG) and Your CRM
What the revised Data Protection Act means in practice for your CRM and how to manage customer data in Switzerland securely and without unnecessary effort.
Elena Trajkovska
Elena Trajkovska
4 min read

Start for free with Advanzo and experience right away how simple deal management can be.

No cost, no risk, no credit card.
Sign up for free
Up to 25 deals closed
No hidden costs
Free email support
Companies and teams working with Advanzo
hey@advanzo.app+41 56 209 08 08
Our areas
HomeFeaturesIntegrationsPricingAboutBlogBlog
Resources
Case StudiesCase Study SingleReviewsIntegrationsIntegrations Single
Others
Terms & ConditionsImprintPrivacy Policy
© 2024, Advanzo is a product of Uliasti GmbH
Imprint | Terms of Use | Privacy Policy | T&Cs
Style GuideLicensesInstructionsChangelog