Roles and permissions
Risk Companion uses role-based access to control what each team member can see and do. Every user is assigned one role per team. This page explains the five available roles and how to manage them.
The five roles
Administrator
Full access to every feature. Administrators can manage users, configure settings, archive projects, and view all data across the team.
- Create, update, and delete any resource
- Access and configure project settings
- Read and update all risks (team-wide, assigned, and archived)
- View all dashboards and run analysis tools
- Manage team accounts and view activity logs
- Archive projects
Risk Manager
Broad access to manage risks and projects across the team. Cannot delete resources or manage user accounts.
- Create and update resources
- Access and configure project settings
- Read and update all risks (team-wide, assigned, and archived)
- View all dashboards and run analysis tools
Risk Owner
Focused access for people responsible for specific risks. Can view team risks but only edit the ones assigned to them.
- Read projects they belong to
- Read all team risks
- Read and update their assigned risks
Viewer
Read-only access across the team. Ideal for stakeholders and executives who need visibility without editing rights.
- View all dashboards
- Read all team projects
- Read all team risks and their assigned risks
Project Manager
Minimal access. This role has no specific permissions in the current release. It serves as a placeholder for future project management capabilities.
- No specialised permissions assigned
Permissions matrix
This table summarises what each role can do at a glance.
| Permission | Admin | Risk Mgr | Risk Owner | Viewer | Proj Mgr |
|---|---|---|---|---|---|
| Create resources | Yes | Yes | No | No | No |
| Update resources | Yes | Yes | No | No | No |
| Delete resources | Yes | No | No | No | No |
| Project settings | Yes | Yes | No | No | No |
| Read all projects | Yes | Yes | No | Yes | No |
| Read assigned projects | Yes | Yes | Yes | Yes | No |
| Archive projects | Yes | No | No | No | No |
| Read all team risks | Yes | Yes | Yes | Yes | No |
| Update all team risks | Yes | Yes | No | No | No |
| Read assigned risks | Yes | Yes | Yes | Yes | No |
| Update assigned risks | Yes | Yes | Yes | No | No |
| Read archived risks | Yes | Yes | No | No | No |
| Update archived risks | Yes | Yes | No | No | No |
| Dashboards | Yes | Yes | No | Yes | No |
| Analysis tools | Yes | Yes | No | No | No |
| Manage accounts | Yes | No | No | No | No |
| View activity log | Yes | No | No | No | No |
How to assign roles
Only Administrators can assign or change roles. You manage roles through the team management screen.
- 1Open team settings
Click your team name in the top-right corner and select Team Settings.
- 2Find the member
Scroll to the Team Members section. Each member shows their current role.
- 3Change the role
Click the Manage button next to the member, select the new role from the dropdown, and confirm.
When inviting new members, you choose their role during the invitation. You can change it later from the same Team Settings screen.
See also
- Settings & frameworks — configure project-level permissions for your team
- FAQ — common questions about access and security