All products
Roles reference
Built-in roles
| Role | Intended for | Headline permissions |
|---|---|---|
| Organisation Owner | The creator of the organisation | Every permission, including billing and ownership transfer |
| Administrator | Senior partners and directors | Every permission except billing |
| Manager | Block managers and estate directors | Read and write across operational records on their scope |
| Accountant | Finance team | Financial workflows in full; read-only on operational records |
| Site Manager | On-site staff | Read and write on their assigned sites only |
| Maintenance Coordinator | Maintenance team | Read and write on work orders, issues, tickets, maintenance events |
| Read Only | Auditors and observers | Read-only across their scope |
Editing a built-in role
Built-in roles cannot be deleted. They can be edited under Settings → Roles → role. Changes apply to every user holding that role immediately. Audit log records each change.
Custom roles
Build a custom role from scratch under Settings → Roles → Add role. Pick the permissions one by one.
Scoping
A role grants permissions. A user's access scope decides which records the permissions apply to. See Roles, permissions and scoping.
Special permissions worth knowing
- Approve bypass — lets a user bypass an approval chain in an emergency.
- Unlock period — lets a user reopen a locked accounting period.
- Force delete — lets a user permanently delete a record after archiving.
- Override compliance — lets a user instruct a vendor with expired insurance.
- View audit logs — lets a user see the full audit trail.
Reserve these for senior roles.
Related
Last reviewed 10 May 2026.