Hi - just wondering what the best practices are around data security. In a hypothetical organization with lots of customers, I don't want to expose the entire list of users and their emails to all support agents. The customer view is very useful for correlating tickets, but I'm nervous about a compromised agent having too much data to access at their fingertips.
What's the best way to limit or restrict this? I'm thinking at a set interval back them up to a separate instance but just wanted to see what everyone else is doing.