You can't classify a file higher than your own security level. So if your security clearance is Confidential, you can't classify a file as Top Secret.
When a file or record is classified it can only be seen by those with the required security clearance, and the classification level is shown on screen. Users without the necessary security clearance won't have access to it or even know that it's there. When a classified file is declared as a record it retains its classification level.
There are four default clearance levels that can be assigned to users:
- Top Secret - Can see all files and records
- Secret - Can see secret, confidential, and unclassified files and records
- Confidential - Can see confidential and unclassified files and records
- No Clearance - Can see unclassified files and records
Security clearance levels are enforced for files and records that have been classified. For example, if a record has been classified as Top Secret, then:
- User 1 (Top Secret clearance) - can see and work with the record, following the usual SkyVault permission rules
- User 2 (Confidential clearance) - doesn't see the record in the File Plan
User 1 would see the following, whereas User 2 would only see the Unclassified file that has no classification label:
