π Overview #
To strengthen data security and support privacy compliance standards, we have introduced a Customer Data Protection feature across the Curfox platform.
This update ensures that sensitive customer information (PII) such as names, phone numbers, emails, and addresses are securely masked across both Web Merchant and Office applications, allowing only authorized users to view the original data.
This significantly reduces the risk of unauthorized access and data exposure while maintaining operational efficiency.
β¨ New Features & Enhancements #
π‘οΈ Customer Data Security Module #
A new Customer Data Security Module has been introduced within the System Administration Panel.
Module Name:
Customer Data Security Module
Control Location:
βοΈ System Settings β Manage Modules
Functionality:
- Administrators can enable or disable the module at any time.
- When activated, the platform automatically enables advanced customer data protection mechanisms.
π System-Wide Customer Data Encryption #
Once the module is enabled, a new encryption control becomes available in the system settings.
Setting Name:
Enable Customer Data Encryption
π Location:
βοΈ General Settings
Behavior when Enabled:
Sensitive customer data will be masked system-wide using asterisks.
Example masking:
| Data Field | Display Example |
|---|---|
| Customer Name | J*** D*** |
| Primary Phone | 07******45 |
| Secondary Phone | 07******89 |
| j***@mail.com | |
| Address | ******** Street |
This masking applies consistently across all modules and interfaces.
π€ Role-Based Access Control (RBAC) for Decryption #
To ensure that operational teams can still perform their duties when necessary, we introduced role-based access to view decrypted data.
New Permission:
π Show Decrypted Orders
Functionality:
Users granted this permission can:
- View original customer information
- Bypass the global masking rule
- Access decrypted data for operational or administrative purposes
Typical Roles with Access:
- Super Admin
- System Admin
- Authorized Operations Managers
π Configuration Path:
User Management β Roles β Orders Tab
π Impacted Areas in the Platform #
Customer data masking will now apply to the following major modules across Curfox:
π¦ Order Management #
- All Orders Table
- View Order Modal
π Operations #
Customer data will be masked in all operational workflows including:
- First Mile Operations
- Middle Mile Operations
- Last Mile Operations
- Reports Sections
π° Finance Module #
Customer data protection now extends to financial workflows.
Merchant Overview #
Customer details linked to merchant transactions are masked.
Deposits & Invoices #
Masked data will appear in:
- Branch Deposit Records
- Generated Invoice Documents
π Order History #
Even when reviewing historical actions:
- Customer data remains masked based on encryption settings
π Reports #
The encryption feature also applies to report generation and exports.
Affected reports include:
- Assigned Orders Reports
- Operations Reports
- Customer Feedback Reports
- Status Count Reports
π₯ Exported Reports #
Exports now follow the encryption rules.
| Scenario | Export Result |
|---|---|
| Encryption Enabled + No Permission | Masked Data |
| Encryption Enabled + Permission | Full Data Visible |
Supported export formats:
- Excel
β οΈ Important Notes & Known Constraints #
π Historical Orders #
Orders created before encryption was enabled will remain visible in their original form.
Encryption rules only apply to orders processed after activation.
βοΈ Receiver Name Masking #
In some delivery statuses:
- Manually entered Receiver Names may not yet be automatically masked.
π Security Impact #
This update significantly improves:
β
Customer data privacy
β
Protection of Personally Identifiable Information (PII)
β
Compliance readiness for data protection standards
β
Operational data security across web and mobile systems
β¨ Curfox continues to enhance platform security while ensuring smooth operations for logistics teams and merchants.
