I got to know about GHL CRM as we implemented that in my company. I loved it so much that I signed up for the agency account and have my MCTB site up already.

However, as I learnt more about how the agency and subaccount relationship works and the user permissions are setup, I am really questioning whether to continue offering this service to other clients.

I've noticed the agency owners by default are privy to their subaccounts complete data set, i.e. their customers, addresses, costs, etc.

In other words, if I run an operational business alongside my GHL agency and I attract one of my competitors to signup with my agency (unbeknownst to them that I own the other business as well), I can run away with their entire client set and start poaching.

Or, if one of your subaccounts is a medical clinic or in a highly sensitive sector, this is quite a serious breach!

The decision to turn off the user permissions are left to the good graces and judgment (or ethics) of the agency owner. Personally, I find this awfully troubling & deeply concerning, especially in today's heightened privacy and data security environment. This has huge data security, privacy breach, ethical issues legal risk written all over it.

Unless the client specifically grant’s you access to their data, you MUST NOT have auto access to their lifeline!

I like GHL and want them to be a huge success. But this issue is more than just me or you. It’s the overall principle that we need to work out for the betterment of GHL, ours, and most importantly Clients.

I have raised this issue with multiple different people from GHL, but seems like they aren't too bothered with that.

here's a link to my FB post about the same: https://www.facebook.com/groups/594608437665362/user/1471297944