Roles

Configure system roles under Settings > People > Roles & Permissions > Roles. Each role defines a set of read and write permissions that determine which areas and functions are accessible to users with that role.

The overview shows all existing roles with their name, description, creator, the number of assigned users, and an automatically calculated risk level. The risk level is based on the write permissions granted, particularly in sensitive areas such as payroll, account management, and system settings.

When editing a role, you configure read and write permissions across several areas such as Company, Time Tracking, My Account, Other Accounts, Payroll, Helpdesk, and Additional Permissions. Each permission can be set to read (view only) or write (create, edit, delete). Some special permissions like adding employees or performing imports are standalone.

Creating a Role

To create a new role, click Create new role, enter a name and description, and configure the desired permissions. You can also duplicate an existing role as a starting point.

Roles are assigned to employees in their profile under the Role & Permissions tab.