1.

To make sure that only authorized person or employee can extend credit and record
payments and adjustments on credit accounts, the owner can implement a hierarchy-
based access on the system. It can also be role-based access. The authorization level is
based on the role of the employee. Only an authorized employee cam extend credit. Same
applies with recording payments and applying adjustments on credit accounts, only
authorized employee can have the permission to do these actions. The owner can also
implement logging all transactions within credit accounts. It must include what, who, and
when was the changes in the credit account.
2. The system can implement an authorization process in which the bookkeeper will be the
one giving or providing a list of authorized suppliers to the system. If the bookkeeper
selects a bogus supplier, the system will prompt the user an error message. In addition to
predefined list of authorized suppliers is the validation of supplier information.
Implementing an identification number for payments can also help in ensuring that
payments are only made for goods and services. Before evry payment, authorization from
the bookkeeper or the system holder should be made.