Reply To: Week 2 Case study 5: Employee error (Pyae Phyo Aung)

[tullaya.sita]

I think in this situation, the authority to access and/or upload the sensitive data such as patient information should be limit to people who get involved and should be access in one-by-one not one-to-all fashion. In order to upload the file, the system should have an alert box to confirm the upload with the preview of data that want to be uploaded ( as a final reminder before release).