Permissions

Complete guide to permissions and roles in Cutly. Learn about role-based access control, permission management, and security best practices.

Permissions & Role-Based Access Control

Cutly uses a comprehensive role-based access control (RBAC) system to ensure team members have appropriate access to features and data. Understand how permissions work to maintain security while enabling effective collaboration.

Permission System Overview

Security Features

Role-Based Access
Feature Permissions
Data Protection

Access Control

Granular Permissions
Audit Trails
Secure Defaults

Role Overview

Detailed breakdown of the three main roles and their capabilities.

Owner

The account creator with full administrative privileges.

Billing Management
Team Management
All Features
Settings Control
Admin

Management role with most privileges except billing.

Billing Access
Invite Members
Create QR Codes
Content Management
Member

Basic collaboration role with limited permissions.

Team Management
QR Code Creation
View Content
Limited Operations

Permission Matrix

Detailed permission matrix showing exactly what each role can and cannot do across all features.

Complete Feature Permissions

Feature / ActionOwnerAdminMember
Billing & Subscription Management
Invite Team Members
Manage Team Members
Create QR Codes
Create Short Links
Edit Short Links
Delete Short Links
View Analytics
Manage Custom Domains
Create Custom Pages
Manage API Keys
Access Team Settings
= Full Access = No Access = Limited Access

Security Features

Advanced security features that protect your team and data through the permission system.

Data Isolation

Each tenant's data is completely isolated from other tenants, ensuring privacy and security.

Isolation Features:

  • • Tenant-based data separation
  • • No cross-tenant data access
  • • Secure API endpoints
  • • Encrypted data transmission

Access Verification:

  • • Every request validates tenant membership
  • • Role permissions checked on each action
  • • Audit logs for all permission changes
  • • Real-time permission enforcement

Best Practices

Security and management best practices for team permissions and role management.

Security Best Practices:

  • • Follow principle of least privilege
  • • Regularly audit team member permissions
  • • Remove inactive members promptly
  • • Use appropriate roles for each team member
  • • Monitor permission change activities
  • • Document role assignments and reasons
  • • Review permissions during team changes

Security Mistakes to Avoid:

  • • Granting admin access unnecessarily
  • • Sharing login credentials between users
  • • Ignoring permission violation alerts
  • • Leaving departing members with access
  • • Not reviewing permissions regularly
  • • Assuming all team members need same access
  • • Overlooking inactive account security
Permission Management Workflow

Recommended workflow for managing permissions as your team grows and changes.

1

Assessment

Evaluate team member responsibilities and required access levels

2

Assignment

Assign minimum required role for each team member's responsibilities

3

Monitoring

Regular review of access patterns and permission usage

4

Adjustment

Update permissions based on changing roles and responsibilities

Role-Specific Guidelines

Owner Guidelines

  • • Limit owner access to founders only
  • • Use for billing and critical decisions
  • • Cannot be transferred or removed
  • • Has ultimate responsibility for account

Admin Guidelines

  • • Assign to department heads or managers
  • • Use for day-to-day team management
  • • Can invite and manage other members
  • • Ideal for content creation leads

Member Guidelines

  • • Default role for most team members
  • • Perfect for content creators and analysts
  • • Can view and work with existing content
  • • Limited administrative capabilities

Troubleshooting

Comprehensive troubleshooting guide for permission-related issues.

Access Denied Errors

When users cannot access features, systematically check these areas:

Permission Errors

When users cannot access features, systematically check these areas:

  • • Verify user role assignment in team settings
  • • Check if feature requires higher permissions
  • • Ensure user account is active and verified
  • • Confirm plan supports the requested feature
  • • Check for any temporary access restrictions

Permission Debugging Steps

To debug permission issues, check these areas in the dashboard:

  1. Go to Settings → Team Members
  2. Verify the user's current role assignment
  3. Check if the user account is active
  4. Confirm the feature is available on your plan
  5. Review the permission matrix above

Quick Permission Check:

  • QR Code Creation: Owner or Admin role required
  • Team Invitations: Owner or Admin role required
  • Billing Management: Owner role only
  • Content Viewing: All roles can view

Role Change Issues

Common issues when trying to change team member roles:

Role Update Problems

Common issues when trying to change team member roles:

  • • Cannot change owner role (permanent)
  • • Only owners/admins can change roles
  • • Role changes require active membership
  • • Some features may require app restart

Getting Help

Email Support

Get detailed help via email

support@cutly.com

Response within 24 hours

Live Chat

Instant help from our Chatbot

Available 24/7

Pro+ users only

Documentation

Comprehensive guides and examples

Always Available

Self-service help

Can't find what you're looking for? Contact our support team

Permissions | Documentation