Data Access Policies
Data Access Policies (DAPs) let you control what data each user or role can see in dashboards.
Access permissions
To create or edit Data Access Policies, you must have the access right “Can create and edit Data Access Policies.”
- If you try to access this section without the right permissions, Starred will display a pop-up notification.
- A user can belong to only one Data Access Policy at a time. It is not possible to switch between different data sets.
Types of Data Access Policies
There are two types of Data Access Policies in Starred:
Role-level DAP
Best for restricting access by role (e.g. recruiters) Based on user name or email address
Individual DAP
Best for restricting access by user or group of users. Based on specific custom fields
Role-level Data Access Policies
A role-level DAP limits visibility for all users within that role.
For example:
- Recruiters can only see survey responses linked to their own candidates.
- They will not see feedback related to other recruiters’ candidates.
When a user with this restriction logs in, their dashboard automatically filters responses to only what’s assigned to them.
You can create role-level DAPs directly from the User Roles section. 📘 Learn how to create a DAP on role-level →
Individual Data Access Policies
An individual-level DAP gives you more flexibility. You can choose any custom field as the filter and assign specific values (e.g. recruiter names, offices, departments) to users.
For example:
- Team Leads can see survey responses linked to their recruiters.
- They can still apply a Recruiter filter to narrow down the results to just one recruiter.
Creating a Data Access Policy
- Go to Company Settings → Data Access Policies.
- Click Create new policy.
- Select the custom field you want to base the restriction on (e.g. Recruiter, Country, Office).
- Choose the values that apply.
- Assign the policy to one or more users.
- Give your policy a name and click Save.
Viewing dashboards with a Data Access Policy
When a user is assigned to a Data Access Policy:
- The policy name appears in the left navigation bar of their dashboard.
- All data shown will automatically be filtered based on the assigned field and values.
For example: A recruiter linked to Recruiter = Sarah Jones will only see responses from candidates assigned to Sarah Jones.
✅ Summary
| Type | Filter base | Assigned to | Example use case |
|---|---|---|---|
| Role-level | Username/email | Entire role (e.g. Recruiters) | Recruiters only see their candidates |
| Individual-level | Custom field (e.g. Recruiter, Office, Department) | Specific users | Team Leads see results from their team |
| Access required | “Can create and edit Data Access Policies” | Admins or managers | Create and assign visibility rules |
Updated about 1 month ago