Assigning roles to users: By clicking on the Administration menu in the navigation, a screen opens with a list of users in the application. A role is assigned to a user when creating a new user. If it is later necessary to add or remove a role from a user, you need to click on the user, select the “Edit” option, and on the user data update screen, choose the new roles. The following table provides a brief overview of the differences in access rights:
| Role | Functionality |
|---|---|
| Users | - Entities (only their own) - Risk assessment (only their own risks) - Service and business process catalogs (own data) - Compliance check (only own controls) - Findings and Action items (only own data) - GDPR data (only for those they are responsible for) |
| Managers | All User functionalities plus: - Entities (all) - Risk assessment (all) - Service and business process catalogs (all) - Projects - Compliance check (all) - Findings and Action items (all) - Reports - Working with knowledge base - Working with groups - Catalogues |
| DPO | - GDPR module - Catalogues (only GDPR related) |
| Project Managers | - Can work with all data within the project they are responsible for (risks, controls, metrics, etc.) - Cannot see data from other projects |
| ReadOnly | - Read-only access to all data they can see |
| Administrators | All Manager functionalities plus: - User and roles management - Application settings |
| GroupAdmins | - Each client (company), whether cloud or on-premise, can create “sub-clients” (subsidiaries) - Group administrators from parent companies can view data for their own company and all subsidiaries - Each piece of data is marked with a “Client” field indicating the company it belongs to |
