Access Control, Roles, and Team Defaults

Access Control, Roles, and Team Defaults

Roles (Settings > Access Control)

Built-in roles:

• Owner — full access including billing and deleting the org. One per org
• Admin — full access except deleting the org
• Member — module access based on toggles; no settings access
• Guest — read-only, scoped to specific resources

To assign:

1. Settings > Access Control > Members
2. Find the user, click the role dropdown, pick a new role
3. Save — change is immediate; the user sees it on next page load

Custom roles

Click + New Role to define a role with granular permissions. For each module (CRM, Email, Voice, …), pick:

• None — module hidden
• Read — view only
• Write — view + modify
• Admin — module's full surface

Module access

Settings > Access Control > Module Access controls which modules are available to which roles. For example, hide LinkedIn from Members but keep it visible to Admins.

Team defaults (Settings > Team Defaults)

Defaults applied to new team members at invite time:

• Default role (usually Member)
• Default module access
• Default notification preferences
• Default theme

Changing team defaults doesn't retroactively change existing members.

Invite a member

1. Settings > Organisation > Members > + Invite
2. Email address + initial role
3. Optional: pre-assign teams (Sales, Support, etc.)
4. Send — they receive an email link to join

Invites expire after 7 days; resend if needed.

Audit logs

Settings > Audit Logs shows who did what and when. Useful for security review and debugging "who deleted that?" mysteries.