Bulk Data Export Access Controller
Ironclad Data Leak Prevention & Export Security
Stop corporate data theft before it happens.
Block Excel/CSV data extraction at the ORM & API level, restricting exports strictly to authorized Data Security Officers.
Is Your Customer Database Safe from One-Click Theft?
By default, Odoo allows almost any user with list view access to export your entire customer database, financial records, or product pricing directly into an Excel/CSV file. Disgruntled employees or compromised accounts can download thousands of records in one click. Even worse, tech-savvy users can bypass standard UI restrictions using XML-RPC or JSON-RPC API calls.
Module Demonstration
Watch a complete walkthrough of the module and see how it works in Odoo.
Watch Demo Video
Uncompromising Database Protection
Multi-layered enforcement that blocks security bypasses from both the web client and external script integrations.
ORM & API Level Enforcement
Wraps the core Odoo export_data() method. If a restricted user tries to bypass the UI using external Python scripts, Postman, or XML-RPC/JSON-RPC API tools, the system throws a hard AccessError.
Immutable Export Audit Logs
Tracks every single data extraction attempt. Monitor who exported data, which model was targeted, the specific fields/records touched, the timestamp, and whether the attempt was allowed or blocked.
Dedicated Security Group
Introduces a highly localized "Bulk Data Export Access" group under a new Data Export Security category. Assign access exclusively to authorized Data Security Officers or executive management.
Instant System-Wide Revocation
Equipped with a powerful post_init_hook that immediately strips the native export permissions from all legacy users upon installation, ensuring automated security from second one.
Zero-Risk Integration & Safe Removal
Built following Odoo enterprise architecture guidelines with robust fail-safes.
Automatic Rollback on Uninstall
If you ever decide to remove the module, a custom uninstall_hook triggers automatically, smoothly restoring standard native export permissions back to all internal users without leaving anyone locked out.
Superuser & Admin Immunity
System Administrators are natively exempted from the block paths, ensuring your technical setup and infrastructure management remain completely unhindered and fully operational at all times.
Transparent Auditing Screen
Navigate to Data Export Security > Export Audit Log to view absolute system forensics.
Developed with by SyncSoft LLC
Looking to enhance your corporate Odoo data security compliance standards?
We are here to support you!
Odoo Proprietary License v1.0 This software and associated files (the "Software") may only be used (executed, modified, executed after modifications) if you have purchased a valid license from the authors, typically via Odoo Apps, or if you have received a written agreement from the authors of the Software (see the COPYRIGHT file). You may develop Odoo modules that use the Software as a library (typically by depending on it, importing it and using its resources), but without copying any source code or material from the Software. You may distribute those modules under the license of your choice, provided that this license is compatible with the terms of the Odoo Proprietary License (For example: LGPL, MIT, or proprietary licenses similar to this one). It is forbidden to publish, distribute, sublicense, or sell copies of the Software or modified copies of the Software. The above copyright notice and this permission notice must be included in all copies or substantial portions of the Software. THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.
Please log in to comment on this module