Document management is not optional. For regulated businesses, proper file organization and access control are compliance requirements. For non-regulated businesses, it is an operational necessity. Disorganized documents cost time, introduce errors, and create security risks.
Yet most businesses are still cobbling together file management across multiple systems: critical contracts in shared drives, invoices in email, project files scattered across folders, no clear ownership or access control. When auditors ask “where is document X?” or “who modified this file and when?” the answers are unclear.
NetSuite File Cabinet solves this by centralizing all business documents in a secure, access-controlled repository integrated with your ERP system. Every file is linked to relevant records. Every change is tracked. Every access is auditable. The result: compliance confidence, operational efficiency, and data security.
This guide covers how File Cabinet works, how to organize documents effectively, how to enforce security through access controls, and how it supports compliance requirements like GDPR.
Key Takeaways
- Non-compliance with document management and data governance requirements carries severe penalties of up to 4% of global revenue or 20 million euros.
- Restricting edit permissions at the folder level ensures only authorized users modify sensitive files.
- Cloud adoption enables secure, compliant file management with centralized access controls and audit trails.
- Files can be linked to transactions, customers, projects, and other NetSuite records for complete context and traceability.
- Every file modification is logged with timestamps and user information, creating audit-ready documentation.
What Is NetSuite File Cabinet?
The File Cabinet is NetSuite’s centralized document repository. It stores all file types (PDFs, images, spreadsheets, documents, and custom files) in a secure, access-controlled environment. Unlike generic file storage, the File Cabinet integrates directly with NetSuite records, creating an audit trail and enabling compliance reporting.
Core Features
- External integrations: Upload files from external systems via SuiteScript or SFTP
- Centralized storage: All documents in one place, not scattered across email or external drives
- Folder hierarchy: Organize documents logically with custom folder structures
- Access controls: Restrict viewing and editing by folder at the user and role level
- Record linking: Attach files to customers, invoices, projects, orders, and other records for full context
- Versioning: Track file versions and changes over time
- System notes: Automatic audit log of who created, modified, or accessed each file
How to Access NetSuite File Cabinet?
Accessing the NetSuite File Cabinet is crucial for your company’s efficient file and document management. Let us walk you through two simple methods to access it so you can choose whichever works best for you. Let’s get started.
1. From the Home Page
To reach the NetSuite File Cabinet from the home page, follow these steps:
- Log in to your NetSuite account.
- Click on the “Documents” tab on the home page.
- Within the “Documents” subtab, you’ll spot the File Cabinet.’
- Click on the File Cabinet to access your folders and files.
2. Via the Global Search Bar
To effortlessly access the File Cabinet from the global search bar, follow these steps:
- Click on the global search bar at the top of the NetSuite interface.
- Type “File Cabinet” in the search bar and hit Enter.
- From the search results, select the “File Cabinet” option.
This method offers a quick way to manage and retrieve your files in the NetSuite File Cabinet without navigating complex menus. It streamlines the file management process, making it more efficient.
Permissions in the File Cabinet
In the NetSuite File Cabinet, restrictions on edit access are limited to folder levels rather than individual files. This means that making changes is controlled at the folder level, so only authorized users can modify files within a specific folder. To keep critical system configurations intact, it’s crucial to have strict access controls for user classes.
Let’s consider a scenario where a system workflow relies on a specific configuration within a file. For example, imagine a file containing the approval email template for a particular process. If a user with edit privileges mistakenly changes this configuration, like altering the content or recipient of the approval email, it could disrupt the intended operation of the system.
Robust access controls are essential to avoid unauthorized changes and maintain the system’s functionality. These controls ensure that only authorized individuals can modify critical system configurations.
Security Recommendations for Access Control
To mitigate risks:
- Folder-Level Access Control: Control user access to specific folders.
- Authorization for Edits: Ensure only authorized users can modify essential files.
- File Availability Settings: Utilize login-required access or company-wide availability settings to manage file accessibility.
System Notes Tracking Changes:
Every file in the File Cabinet is associated with system notes, documenting alterations made, timestamps, and context. Additionally, NetSuite generates a content hash that changes with file modifications for specific file types like JSON, XML, and JavaScript.
Organizing Files in the File Cabinet
Creating a Logical Folder Structure
Before uploading files, design your folder structure. Poor structure makes files hard to find. Good structure enables quick retrieval. A common approach:
- By department (Finance, Sales, HR, Operations)
- By document type (Contracts, Invoices, Approvals, Reports)
- By project (Project A, Project B, Project C)
- By year and month (2025/January, 2025/February) for time-sensitive documents
- Hybrid: Department > Document Type > Year
Choose a structure that matches how your team thinks about documents. Then enforce it consistently.
Creating Folders
- In File Cabinet, click New > Folder
- Name the folder descriptively (avoid generic names like ‘Files’ or ‘Documents’)
- Assign a parent folder if creating a subfolder
- Click Save
Uploading Files
- Select the destination folder
- Click Upload and choose files from your computer
- Alternatively, drag and drop files directly into the folder
- The system accepts most file formats: PDF, Word, Excel, images, JSON, XML, etc.
Editing and Deleting Files
- To edit: Click the file, then click Edit, make changes, and Save
- To delete: Right-click the file, select Delete, and confirm
- Before deleting, verify the file is not linked to active records or processes
Access Controls
File Cabinet’s most powerful feature is folder-level access control. This ensures that only authorized users can view or edit sensitive documents.
How Folder-Level Access Works
Permissions are assigned at the folder level, not individual files. This means all files in a folder inherit the same permissions. To restrict who can edit:
- Only users with the Finance role can edit the Finance folder
- Only Sales managers can edit the Sales folder
- Only project managers can edit the Project X folder
Setting Permissions
To configure permissions on a folder:
- Right-click the folder and select Properties or Permissions
- Assign permissions by role or user
- Choose permission level: View only, Edit, or Delete
- Save the permission settings
Best Practices for Access Control
- Apply least-privilege access: Users get only the permissions they need for their role
- Protect critical files: Configuration files, templates, and compliance documents should be edit-restricted
- Audit permissions quarterly: Remove access for employees who have changed roles or left the organization
- Document approval templates separately: These should never be edited except by administrators
Automated File Management Through SuiteScript
For advanced use cases, SuiteScript enables automation of file management. You can:
- Automatically generate documents (invoices, purchase orders, reports) and store them in File Cabinet
- Move files between folders based on business logic (e.g., move to Archive folder after document is 2 years old)
- Validate file types and sizes before upload
- Upload files from external systems via NetSuite SFTP module, automating file transfer from third-party systems
System Notes and Audit Trails
Every file in the File Cabinet is protected by system notes. NetSuite automatically logs:
- Who created the file and when
- Who modified the file and when
- What changes were made (for certain file types)
- Who accessed the file
- Content hash changes (for JSON, XML, JavaScript files)
This creates a complete audit trail that satisfies most compliance requirements. When regulators ask “has this file been modified?” or “who has accessed it?” you have documented proof.
Compliance Considerations
GDPR Requirements
Under GDPR, organizations must:
- Track all access to personal data documents
- Implement access controls to restrict who can view sensitive data
- Maintain audit trails for all data access and modifications
- Demonstrate ability to delete data upon request (right to erasure)
NetSuite File Cabinet supports these through folder-level access controls and system notes. However, ensure your folder structure isolates personal data and your retention policies support right-to-erasure requests.
SOX and Other Regulatory Requirements
Public companies must maintain audit trails for financial documents. File Cabinet’s system notes provide this automatically.
Conclusion
NetSuite File Cabinet transforms document management from a scattered, uncontrolled process into a centralized, auditable system. By organizing files in folders, restricting access by role, linking files to records, and leveraging system notes for audit trails, you achieve both operational efficiency and compliance confidence.
Start by designing a folder structure that matches your organization’s thinking. Then configure access controls to enforce least-privilege access. Finally, regularly audit permissions to ensure compliance. Within weeks, your team will have complete visibility into who can access what, when files were modified, and why.
Every organization handles documents differently. If you’re planning to optimize NetSuite File Cabinet for security, visibility, and compliance, a quick discussion can help map out the right setup. Book a session with us!
