Roles and Permissions
Roles define what a member can do in an organization. Each role has its own set of access permissions — from full control to limited viewing.
What are roles?
Roles are sets of permissions that define a member’s level of access to organization features. The role system provides access control and allows you to safely distribute responsibilities among members.
Key principles of the role system:
| Principle | Description |
|---|---|
| Permission Set | Each role includes a specific set of access rights |
| Access Control | Roles restrict access to critical functions |
| Least Privilege | Members receive only the rights necessary for their work |
Available Roles
There are four main roles in an organization with different access levels:
| Role | Description | Permissions |
|---|---|---|
| Owner | Full control over the organization | All rights without exceptions |
| Administrator | Organization and member management | Almost all rights except deleting the organization |
| Member | Primary work in the organization | Basic rights to work with resources |
| Guest | Limited access for external users | View-only access |
You cannot remove the owner role from yourself. To transfer owner rights to another member, you must first assign them as an owner — an organization can have multiple owners simultaneously.
How to Assign a Role
Only an organization owner or administrator can change a member’s role.
Navigate to the members section
Open ORG → Members in the organization menu.
Find the member
Use search or scroll through the list to find the member whose role you want to change.
Click on the current role
Click on the role text next to the member’s name. A dropdown menu with available roles will appear.
Select a new role
Choose the desired role from the list. Available roles depend on your current role.
Confirm the change
Confirm the role change. The member will immediately receive new access permissions.
Access Rights Matrix
Detailed information about the rights of each role:
Owner
Owner — Full Control
The owner has all possible rights in the organization:
- ✅ Manage organization settings
- ✅ Change name and description
- ✅ Manage avatar and logo
- ✅ Invite new members
- ✅ Remove members
- ✅ Change roles of all members
- ✅ Assign other owners
- ✅ Create and delete projects
- ✅ Manage all resources
- ✅ View all data and reports
- ✅ Delete the organization
- ✅ Manage billing and subscriptions
- ✅ Access to action audit
Be careful when assigning the owner role. An owner can delete the organization or change the roles of other owners.
Frequently Asked Questions
Can I create my own custom role?
Currently, the system supports only four preset roles: Owner, Administrator, Member, and Guest. The ability to create custom roles with flexible permission settings is planned for future versions.
How do I transfer owner rights to another member?
To transfer owner rights:
- Assign the new member as an owner (an organization can have multiple owners)
- Ask the new owner to change your role to the desired one
You cannot demote your own owner role if you are the only owner of the organization.
Can there be multiple owners in one organization?
Yes, an organization can have multiple owners simultaneously. This is useful for distributing responsibility and ensuring management continuity. All owners have the same full rights.
What can an administrator do that a member cannot?
Key differences:
- Administrators can invite and remove members
- Administrators can change roles of other members
- Administrators can modify organization settings
- Administrators have access to all projects and resources
- Administrators can view billing and action audit
How to protect against accidental organization deletion?
Only an owner can delete an organization. Security recommendations:
- Assign owner role only to fully trusted people
- Use the administrator role for daily management
- Regularly review the list of owners in the members section
- The system will ask for additional confirmation when deleting the organization