diff --git a/surveys.go b/surveys.go
index e880652..b77fa43 100644
--- a/surveys.go
+++ b/surveys.go
@@ -53,7 +53,7 @@ func init() {
 	}, adminRestricted))
 	router.GET("/api/surveys/:sid", apiAuthHandler(surveyAuthHandler(
 		func(s Survey, u *User, _ []byte) HTTPResponse {
-			if (s.Promo == u.Promo && (s.Group == "" || (u != nil && strings.Contains(u.Groups, ","+s.Group+",")) && s.Shown)) || (u != nil && u.IsAdmin) {
+			if ((u != nil && s.Promo == u.Promo) && (s.Group == "" || (u != nil && strings.Contains(u.Groups, ","+s.Group+",")) && s.Shown)) || (u != nil && u.IsAdmin) {
 				return APIResponse{s}
 			} else {
 				return APIErrorResponse{