How to prevent admin account to see everyone emails

**heint** · 04-09-2026, 12:26 PM

Greetings, padaliyajay20,

Admin users in an EspoCRM instance have *carte blanche*, which means you cannot limit admins' permissions. Check the documentation page regarding Personal Email Account if you want users to use their personal account or set corresponding role access: https://docs.espocrm.com/administrat...email-accounts.

**rabii** · 2026-04-13T14:05:46+00:00

hey padaliyajay20,

You can't do that through UI but if you have a coding experience there is a way and it is simple and clean. using espocrm metadata https://docs.espocrm.com/development...adminmandatory

Add the following configuration to your instance - create this file custom/Espo/Custom/Resources/metadata/app/acl.json file: and add content below

PHP Code:

{  
    "adminMandatory": {  
        "scopeLevel": {  
            "Email": {  
                "read": "own",  
                "edit": "own",  
                "delete": "own",  
                "create": "yes"  
            }  
        }  
    }  
}

In this configuration you are limiting the admin to read only their own emails - edit only their own emails and also delete only their own emails and of course they are allowed to create a new email.

You can change the values as you wish e.g allow them to read their team's emails the you should use something "read": "team" etc

Clear cache afterward and rebuild and this will work.

I hope this helps

How to prevent admin account to see everyone emails

How to prevent admin account to see everyone emails

Comment

Comment