Person Security Profile Not Affecting Approval Allocation
We are currently building our security system. It is based on AoR in the person security profile on role side and based on representative type on approval side. Thus, by assigning the matching AoR to an HR person, they get access to the right people as well as approvals that match their role.
Now, we have a group of employees that are excempt from others because of data privacy issues. We have created a special HR role for this group. Access is granted via user person type on the special HR role and this special group is excluded from all other roles via an exclusion rule (in the person security profile) on those other roles.