Mask Account Number on constituent bank accounts

Similar to PCI compliance for credit cards, mask the bank account number on the Accounts form to show only the last 4 digits
  • Guest
  • Jun 29 2015
  • Reviewed: Need Further Info
  • Attach files
  • Christine Goodwin commented
    September 26, 2019 14:48

    We would like the number hidden from view within the CRM DB. I could not find a way to permission just this info so only certain users of CRM can see it.

    When the payment method is Direct Debit, the entire bank account number shows on the revenue record along with the name of the bank. I attached a screenshot but I have blocked the number intentionally. It's the entire number, not an XXXXX-6012 for example. I'm happy to do a screen share with someone if that would be helpful. 

    If credit card numbers can be masked, it makes sense that these could be as well. This isn't about PCI.

  • Admin
    Nicola Cameron commented
    September 26, 2019 10:21

    Currently constituent bank account numbers can be masked when used in communications such as Acknowledgements, There is no PCI requirement to mask this data within CRM.

    The Revenue Transaction Profile View Form displays only the last 4 digits of the bank account.

    Both the Constituent Financial Accounts List and Recurring Gift Payment Details Edit From can be secured to restrict user access/visibility.

    Please provide more details as to this feature request so we can revisit and review accordingly.

  • +3