Data Security in Distributed Reports

Dayforce Implementation Guide
Version
R2025.1.1
Data Security in Distributed Reports

Dayforce applies data security to distributed reports so that recipients can only see data that they have permissions to view. Data is masked with asterisks if a recipient doesn’t have Can Read permission for a field in the report. Further, Dayforce doesn’t send the report to a recipient who doesn’t have read access to any of the columns in the report, or if the report contains a filter on a field that they don’t have access to unless the Use My Security feature is enabled.

You can assign some employees to more than one user role with different access authorizations.

Which role's access authorizations will apply in various scenarios
Scenario Security Applied
Recipient's primary role is selected.
Recipient isn’t selected by name. 		The recipient receives the report with their primary role's security applied.
Recipient's secondary role is selected.
Recipient isn’t selected by name. 		The recipient receives the report with their secondary role's security applied.
Recipient's primary and secondary roles are both selected. The recipient receives one copy of the report with their primary role's security applied.
More than one of the recipient's secondary roles are selected. The recipient receives one copy of the report. Dayforce applies the security of the role that comes first in the list of roles in the database.
Recipient's user name and secondary role is selected. The recipient receives one copy of the report. The user name takes precedence over the role selected and the user's primary role's security is applied.

Enable Use My Security Feature in Reporting and Analytics > Reporting > Reports

You must enable the Reporting and Analytics > Reporting > Schedule Reports > Distribution > Use My Security Settings role feature in the Features tab in System Admin > Roles for users who need to distribute reports to individuals who don’t have Can Read access authorization for all fields in the report. When this feature is enabled, report recipients can view all of the fields in the distributed report, regardless of their report security settings. The Use My Security feature uses the report distributor's security settings to generate and distribute the report.

All scheduled distributed reports aren’t enabled if the report distributor no longer has access to any of the following:

  • The Use My Security feature
  • The role used to schedule the distributed report
  • The report that was distributed