Roles and permissions 🛡
Control what each team member can see and do across your scopes and modules.
Ayoub Amine
Last Update 2 hari yang lalu
A member's role controls which scopes they can access and what they can do in each module (View, Edit, Delete).
The three roles
- ​Admin — full control: manage scopes, members, invitations, and the property.
- Manager — access to all scopes (including the global scope). Per-module permissions are customizable.
- Employee — access only to assigned scopes. No access to the global scope. Per-module permissions are customizable.
Scopes in short
Scopes group your records by project, store, region, or goal. Any record with no scope lives in the global scope — Managers can see it, Employees can't. That means a new Employee won't see your existing records.
Set per-module permissions
- Go to Team members and open a member's permissions.
- Pick the role (Manager or Employee).
- Tick View, Edit, or Delete per module (Invoices, Estimates, Customers, Products, Transactions, Payments, Refunds, Recurring, Reports, Attachments).
- Click "Save".
Examples
- Accountant → Manager, View only across all scopes.
- Project manager → Manager, Edit access to create and update records anywhere.
- Freelancer on one client → Employee invited to that client's scope, Edit access.
- Store manager → Manager, Edit on Invoices, Payments, and Refunds.
- Support agent → Manager, View on Customers and Payments, Edit on Refunds.
- Per-store team → create a scope per store and invite staff as Employees with View or Edit.
- Sales rep by region → Employee invited to a region scope, Edit on Invoices and Estimates.
- Bookkeeper / auditor → Manager, View only, no Edit or Delete.
- Seasonal or temporary staff → Employee in a dedicated scope, removed when the project ends.
Enjoy 🧡