Portal Administration > Data Access Permissions: add an "Edit" permission
Currently the Insurance and Contracts tabs of the Data Access Permissions allow Portal Users to Add policies, Delete Policies, or Read Only.
This means that if we want portal users to keep their insurances up to date, there is no restriction on them creating new policy entries rather than adding another attachment to the existing policy entry.
They can also add policies which are irrelevant to their works with our organisation, leading to later administrative issues when responding to triggers for an expired policy we never required.
Implementing an "Edit" permission would allow portal users to update their existing policies to extend due dates with the provision of a new document, while also controlling the proliferation of extra policy entries cluttering up the organisation profile.