diff --git a/application/controllers/system/infocenter/InfoCenter.php b/application/controllers/system/infocenter/InfoCenter.php
index 25ee96b60..76011dc04 100644
--- a/application/controllers/system/infocenter/InfoCenter.php
+++ b/application/controllers/system/infocenter/InfoCenter.php
@@ -125,9 +125,9 @@ class InfoCenter extends Auth_Controller
 				'zgvStatusUpdate' => 'lehre/zgvpruefung:rw',
 				'saveAbsage' => 'infocenter:rw',
 				'saveFreigabe' => 'infocenter:rw',
-				'getNotiz' => 'infocenter:r',
+				'getNotiz' => array('infocenter:r', 'lehre/zgvpruefung:r'),
 				'saveNotiz' => array('infocenter:rw', 'lehre/zgvpruefung:rw'),
-				'updateNotiz' => 'infocenter:rw',
+				'updateNotiz' => array('infocenter:rw', 'lehre/zgvpruefung:rw'),
 				'reloadZgvPruefungen' => 'infocenter:r',
 				'reloadMessages' => 'infocenter:r',
 				'reloadDoks' => 'infocenter:r',
diff --git a/application/controllers/system/infocenter/ZGVUeberpruefung.php b/application/controllers/system/infocenter/ZGVUeberpruefung.php
index bb0c36b66..7d178a529 100644
--- a/application/controllers/system/infocenter/ZGVUeberpruefung.php
+++ b/application/controllers/system/infocenter/ZGVUeberpruefung.php
@@ -4,6 +4,8 @@ if (! defined('BASEPATH')) exit('No direct script access allowed');
 
 class ZGVUeberpruefung extends Auth_Controller
 {
+	const BERECHTIGUNG_KURZBZ = 'lehre/zgvpruefung';
+
 	/**
 	 * Constructor
 	 */
@@ -12,14 +14,15 @@ class ZGVUeberpruefung extends Auth_Controller
 		// Set required permissions
 		parent::__construct(
 			array(
-				'index' => 'lehre/zgvpruefung:r',
-				'getZgvStatusByPrestudent' => 'lehre/zgvpruefung:r'
+				'index' => self::BERECHTIGUNG_KURZBZ.':r',
+				'getZgvStatusByPrestudent' => self::BERECHTIGUNG_KURZBZ.':r'
 			)
 		);
 		$this->load->model('crm/ZGVPruefungStatus_model', 'ZGVPruefungStatusModel');
 		$this->load->model('crm/ZGVPruefung_model', 'ZGVPruefungModel');
 
 		$this->load->library('WidgetLib');
+		$this->load->library('PermissionLib');
 
 		$this->setControllerId();
 		$this->loadPhrases(
@@ -31,7 +34,14 @@ class ZGVUeberpruefung extends Auth_Controller
 
 	public function index()
 	{
-		$this->load->view('system/infocenter/infocenterZgvUeberpruefung.php');
+		$oeKurzbz = $this->permissionlib->getOE_isEntitledFor(self::BERECHTIGUNG_KURZBZ);
+
+		if (!$oeKurzbz)
+			show_error('Keine Berechtigung.');
+
+		$data['oeKurz'] = $oeKurzbz;
+
+		$this->load->view('system/infocenter/infocenterZgvUeberpruefung.php', $data);
 	}
 
 	public function getZgvStatusByPrestudent()
diff --git a/application/views/system/infocenter/infocenterZgvUeberpruefungData.php b/application/views/system/infocenter/infocenterZgvUeberpruefungData.php
index 6614e6b2a..5bfa5b078 100644
--- a/application/views/system/infocenter/infocenterZgvUeberpruefungData.php
+++ b/application/views/system/infocenter/infocenterZgvUeberpruefungData.php
@@ -4,11 +4,6 @@ $APP = '\'infocenter\'';
 $INTERESSENT_STATUS = '\'Interessent\'';
 $TAETIGKEIT_KURZBZ = '\'bewerbung\', \'kommunikation\'';
 $LOGDATA_NAME = '\'Login with code\', \'Login with user\', \'New application\'';
-
-$uid = get_uid();
-$rechte = new benutzerberechtigung();
-$rechte->getBerechtigungen($uid);
-$oeKurz = $rechte->getOEkurzbz('lehre/zgvpruefung');
 $oeKurz = '\''. implode('\',\'', $oeKurz) . '\'';
 
 $query = '