Idea

board privacy/security - password protection

  • 1 June 2020
  • 7 replies
  • 918 views

Userlevel 4

Hi Guys - we are using Miro boards to capture information which could potentially be sensitive in nature (mainly healthcare related) - is there any way / or are there any plans to password protect boards? - this is really a ‘must have’ in terms of academic research ethics.


7 replies

Userlevel 7

@Don McIntyre -

While you can’t add passwords to boards themselves, the sharing access control model should ensure that only the folks you want to access a board are able to. 

Kiron

Userlevel 4

thanks @Kiron Bondale , though surely someone with a ‘read only’ link could forward that to someone else right?

Userlevel 7

As far as I know, unless they have access to the board OR you have enabled anonymous guest access, they wouldn’t be able to access it even if they did receive (or somehow figure out) the URL.

Kiron

Userlevel 4

@Kiron Bondale out of interest, tell me this; having shared a board publicly - will that link always take any user to the board? i.e. is there any way a Board can be made private or the link rescinded? 

Userlevel 7

Yes @Don McIntyre , you can definitely take away anonymous guest editor access to the board (see below):

 

We have this issue too.  Potentially pivoting health/well-being qual interviews to a virtual format and needing ethics approval. Does anyone know of anyone else that has gained ethics approval for research using Miro boards?  And what settings did they propose? Once someone somewhere has got ethics approval, other Ethics Committees show a bit more interest in new platforms.

 

Userlevel 1

@Don McIntyre  - We run into this problem as well!

 

To add on to this, one of our big issues related to confidentiality is that this requires our end users to properly setup project sharing and board sharing. We have learned that we can not always rely on our employees to properly setup secure projects / boards that they are sharing with clients, but we understand that not all of our users our Miro experts. 

 

A couple of things that would help our team function better would be:

  1. Add a feature to remove the “All boards” view. Frequently we have users who correctly create a secure project, but then unintentionally set the “Anyone at *Team Name* can edit”. This results in any user being able to see a potentially confidential board
  2. Add default sharing settings for boards at a team level. For example, Default sharing setting would ideally set to “No Access” for the entire team, but at a project level we would want all project members to have edit access to it.
  3. Add a new notification that alerts admins of boards that have been created. This is important to us because it would allow us to get notified when a board is created and ensure that it has been created securely

Reply