Limit access to patient information based on role

We are trying to set up a texting platform with our EMR system so our clients can message our therapists. It came to my attention that the scheduler in fusion has access to the medical chart. From what I have learned from our health care attorney any EMR system should have separate access from medical professionals and front schedulers and administration staff. Can you limit what access the scheduler has to the documents in the medical chart to just demographic information only?

It would be nice to have a feature that allows the admin to decide what is available to be seen roles. For example, the scheduler does not necessarily need to see the documents. They also don't need access to every tab in patient's charts. HIPAA states access to patient info should be limited to those that need access. This would allow for a temporary employee to be brought on without giving them access to all of the patient's info.

Don't allow therapists to access and view the patient's insurance information, including the expected co-pay on the appointment hover. Only allow Admins and Billers to view that information.