Isolate/protect user data from website

Hi,

We need to somehow isolate or protect a website's users (signed up users) from the website itself. Meaning, the info the site will be recollecting, will be quite sensitive, and cannot be available to admins or developers of the site.
We were thinking of creating special admin roles (developers) who will not have access to the site's users, however, we don´t know how to prevent them from installing plugins that access the DB, where this data can be retrieved.

What would you suggest?
Thanks!

  • Nithin
    • Support Wizard

    Hey M.,

    Hope you are doing good today. :slight_smile:

    We were thinking of creating special admin roles (developers) who will not have access to the site's users, however, we don´t know how to prevent them from installing plugins that access the DB, where this data can be retrieved.

    You could make use of User Role Editor plugin, and create customized capabilities. You could remove activate_plugins, edit_plugins, install_plugins capabilities for these new user roles, so that they wouldn't have access to plugins section.

    If you are looking to hide/remove more stuffs in the dashboard. You could make use of Adminimize plugin.

    https://wordpress.org/plugins/user-role-editor/
    https://wordpress.org/plugins/adminimize/

    I hope this helps. Please let us know if you still need any further assistance. Have a nice weekend. :slight_smile:

    Kind Regards,
    Nithin

Thank NAME, for their help.

Let NAME know exactly why they deserved these points.

Gift a custom amount of points.