At present visibility of Bomgar Session data can only be determined by role in ServiceNow, so all people with a particular role can see all Bomgar session data for all Incidents.
However under GDPR a business has to justify their ability to see confidential information. This is ok for employees who use Bomgar (they need to see the Bomgar buttons and session tab). However other departments (who don't use Bomgar) need justification.
Customers would like the ability to show or hide the Bomgar Session tab based on who is assigned a ticket. So people without the Bomgar role would still be able to see session history for tickets that had been transferred to them.