## Documentation Index Access the complete documentation index at: https://www.zoho.com/in/books/help/llms.txt Use this file to discover all available documentation pages before proceeding. # Privacy and Security At Zoho Books, we take the privacy of your organization very seriously. With the data protection laws coming up, the following feature enhancements in Zoho Books will help you stay GDPR compliant.  ## Permissions to Access PII Zoho Books lets you to restrict your organization user’s access to the sensitive data of your contacts. You can choose to edit a user’s role and enable or disable their access to **Personally Identifiable Information** (PII) - Any data that can be used to identify a specific individual. To do this: * Go to **Settings** in the top right corner of the page.  * Select **Roles** under _Users and Roles_.  * Click **Edit** next to an existing role to modify an existing role or create a **new role**.  * Scroll to the **Settings** section and enable or disable **Provide access to protected data**. ![PII Permission](/books/help/images/settings/security-pii-permissions.png) * Click **Save**.  **Note:** By default, the setting will be enabled only for the Admin of the organization. Read more about [Roles and Users.](https://www.zoho.com/in/books/help/settings/users.html)  * * * ## Custom Field Creation Custom Fields in Zoho Books allow you to quickly and easily add data against fields created by you. From now on, when you create a new custom field, you can choose to encrypt and save the Personally Identifiable Information (PII). * Go to **Settings** in the top right corner of the page.  * Select the module for which you would like to create a new custom field.  * Enter the **Label Name** and select the **Data Type**.  * Select how you want to store your data based on its sensitivity under **Data Privacy** * * * ## Data Privacy Select PII or ePHI based on the information that you will be entering in this field. * Select **PII** (Personally Identifiable Information) if the information that you will enter is confidential and can be used to identify a person. You can mark fields such as _Text, Email, URL, Phone, Number and Date_ as PII. You can choose to encrypt and store it if the data is sensitive or store it without encryption if the data is non-sensitive. Choose if the information you enter will be sensitive or not sensitive: * **Sensitive data. Encrypt and store it.** This data can be viewed only by users who have permission to access PII. * **Not sensitive data. Store it without encryption.** Only users with access to protected data can view the details. However, users can use this field to perform advanced searches. * Select **ePHI** (Electronic Protected Health Information) if the information that you enter can be used to identify a patient. For example, an electronic copy of medical report will be ePHI. You can mark only fields such as _Text, Email, URL, Phone, and Date_ as ePHI. The data will be considered as sensitive; it will be encrypted and stored. Only users with access to protected data can access the fields. Users cannot use this field to perform advanced searches. * Select the other settings and click **Save**. ![Custom Field](/books/help/images/settings/new-cust-field.png) **Note:** You can mark a field as PII or ePHI only for the following data types: text, number, email, URL, date and phone.  * * * ## Restricting Data Export Once you have enabled role based access, the users without permission to access Personally Identifiable Information (PII) will not be able to export any sensitive information. This would include SSN number, bank account number, and any custom fields created and marked as sensitive.  So, when users with permission to access PII want to export data, they can do so. * Go to the module for which you want to export data.  * Click **Export** from the **More** icon.  * Select the module you want to export, choose the status of the transaction, and select the file format.  * Enable **Include Sensitive Personally Identifiable Information (PII) while exporting.** * Click **Export**. ![Data Export](/books/help/images/settings/security-export.png)