Forums
Home Product Q&A Discussion groups Articles Ask a question Search
Learning
Events
Champions

Forums

Articles
Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Product Q&A
See all
Community resources
Top groups
Explore all groups
Community resources
Learn
Community resources
Events
Community resources

How can I configure a project for my Legal Department who has privacy & visibility concerns?

Shala Schultz
Shala Schultz April 7, 2022

I'm working to increase digital adoption of Jira Software within our company. Our Legal Department needs their project & tasks to be visible to ONLY the users they specify - even Jira Admins should not be able to see the tasks within their projects.

Is this possible by creating a Team Managed Project and then using Issue Level Security settings? Or will Jira Admins always be able to see the tasks in any project? 

Answer
Watch
Like # people like this
1207 views

2 answers

2 accepted

0 votes
Answer accepted
Karina D.
Karina D.
I'm New Here
I'm New Here
Those new to the Atlassian Community have posted less than three times. Give them a warm welcome!
Get involved
May 12, 2022

Adding my +1 to this; Next gen would have been perfect for my legal department except for the issue-level-security issue. Atlassian should keep in mind that non-dev teams (particularly cost center's like Legal) aren't at the top of the 'we need work done in Jira' hierarchy in our respective companies, so allowing Legal Ops to self-serve with more customizable permisioning in team managed projects would overcome this huge obstacle for usage.

View More Comments
Shala Schultz
Shala Schultz May 12, 2022

Hi @Karina D. agreed. The solution took some configuration and anytime a new team member is added to the Legal team, we will need to manually add them to the settings I created to ensure as much privacy as possible. As an update to this post, here are the settings I ended up going with:

  • Created a new Project Role called Legal Team Member.
    • Then I added the specific individuals on the team as Default Users. 
  • Created a new Permissions Scheme called "Legal Department".
    • For the "Browse Projects" setting I added the individual usernames. I could have done this by a group or by that Project Role, but I wanted to go down to the individual user here so someone on my IT team doesn't accidentally add someone to a group or Project Role and not realize what kind of access they were giving. 
    • For most of the remaining settings I set it as Project Role = Administrators or Legal Team Member. 
  • Created Issue Level Security Schemes:
    • I created the default level to be for all the Legal Team Members to view and again went down to the individual username level for this setting. 
    • I created an additional level for the head of our legal department in case there were issues he needed to add to projects for only himself to see.
Like
Reply
0 votes
Answer accepted
Nic Brough -Adaptavist-
Nic Brough -Adaptavist-
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
April 7, 2022

Team managed projects do not have issue level security, so I think that may be a non-starter for you.

For both team and company managed projects though, the key is who you let into the project.

Team managed projects have simple roles, and the way to prevent someone seeing the project is to not add them to it.

Company managed projects have permission schemes, which are rules on who can do what.  The important one here is who has "browse project" permission, and the best option for you here is to set that to something like "Role: developers" (instead of the default of "any logged in user").  Then your project admins can add and remove whomever they want in the role.

Admin rights give people admin rights, not "can do anything".  If you don't put an admin in the developer role, they can't see the project or its content.  But as they are admins, they can add themselves or change the permissions.  

View More Comments
Shala Schultz
Shala Schultz April 7, 2022

Thank you @Nic Brough -Adaptavist- !

Like
Reply

Suggest an answer

Log in or Sign up to answer
Jira
Jira
TAGS
AUG Leaders

Atlassian Community Events

    See all events
    Community
    Forums
    FAQs Forums guidelines
    Learning
    About learning Resources
    Events
    Champions
    Copyright © 2025 Atlassian
    Privacy Policy Terms Security
    Welcome illustration

    Welcome to the new Atlassian Community

    Online forums and learning are now in one easy-to-use experience.

    By continuing, you accept the updated Community Terms of Use and acknowledge the Privacy Policy. Your public name, photo, and achievements may be publicly visible and available in search engines.