v2026.1.2
Release date: January 21, 2026
✨ New Features
Granular CRM Access Control
Implemented complete permissions system that allows precise control over what each agent can view in the CRM module. Now you can ensure each user has access only to data from customers they directly serve.
What is it for?
- ✅ Privacy and Security: Confidential customer data is protected and accessible only to direct responsibles
- ✅ GDPR Compliance: Meets data protection requirements and minimizes access to personal information
- ✅ Focused Experience: Agents view only what they need for their work, with a cleaner and more objective interface
- ✅ Administrative Control: Managers decide each user's access level according to business needs
How does it work?
For Limited Agents (agent_limited):
- CRM Menu: View only "My Customers" option
- Funnel Screen: See only customers assigned to them
- Automatic Filter: System automatically filters only their customers
- No Toggle: Button to switch between "all" and "my customers" is hidden
For Other Agents (agent):
- CRM Menu: Can choose between "My Customers" and "All Customers"
- Funnel Screen: Can use a toggle to switch views
- Permissions: Can read and edit (but not create or delete)
For Administrators and Managers:
- Full access without restrictions
- View all customers
- Can manage pipelines and export data
How to configure?
- Access the Users menu (administrative area)
- Select the user you want to configure
- In the Permission/Role field, choose "Limited Agent" (agent_limited)
- Save changes
Done! The agent will only see their own customers in CRM.
Available Permission Types
- Owner/Admin: Full access without restrictions
- Manager: View all but with some administrative restrictions
- Agent (Regular Agent): Access their customers + can see all if necessary
- Agent Limited (Limited Agent): ⭐ Recommended - See ONLY their customers
Customer Query by User Permission
Customer listing now respects logged-in user permissions across all system modules (Customers, CRM, and Services).
What is it for?
- ✅ Enhanced security: Agents with
agent_limitedpermission view only customers related to their own services - ✅ Data privacy: Prevents agents from accessing information about customers not assigned to them
- ✅ Compliance: Meets data protection and privacy requirements
- ✅ Granular control: Administrators maintain full access to the customer base
How does it work?
- For Administrators and Supervisors: View all team customers normally
- For Agents with
agent_limited:- View only customers from services assigned to them
- Listing is automatically filtered based on
last_assigned_tofield - No additional configuration needed
🔒 Security
Multi-level Customer Data Access Control
- Interface (UI): Hides options and controls not permitted for user profile
- Backend: Specific database functions (
get_customers_by_stage_v2,get_stage_customer_counts_v2) automatically filter data - Permissions: Role system ensures only authorized data is accessed
- Audit: Access history maintained for traceability
Technical Improvements
- Created v2 versions of CRM query functions with
last_assigned_tofilter - Implemented
usePermissionshook for role-based access control - Added permission constants (
PERMISSION_TEMPLATES) for all profiles - Complete integration between Sidebar, CRMFunnel, and data hooks
🎯 Benefits
- ✅ Greater privacy: Customer data protected by multiple security layers
- ✅ GDPR compliance: Meets data minimization and restricted access principles
- ✅ Simplified management: Agents focus only on their customers
- ✅ Enhanced security: Drastically reduces information leakage risks
- ✅ Optimized experience: Cleaner and more objective interface for each user profile
- ✅ Flexibility: Administrators can adjust permissions as needed