# User Access Types & Permissions

### Access Types

When both creating the DORAedge tenant for your organization and adding new users to the workspace, an Access type is assigned to each user. Access type assignments determine what permissions users have across the app.

#### Available Access Types

* **Owner:** The user who created the DORAedge workspace, and they have full access to records across the app. The Owner is the only workspace user who has access to the **Billing** page, which is accessible by clicking on their name on the bottom left of the side bar.
* **Administrator:** Full access with the ability to create, update, and archive all records.
* **Editor:** Full access with the ability to create, update, and archive all records.
* **Viewer:** View only access to all records. 

***

### Permissions across DORAedge

The table below outlines the various record types and permissions available by user access type.

**Legend:** 

* **Manage**: Can Create, Update, and Archive all records
* **Read only**: Can only view all records

<table data-header-hidden><thead><tr><th width="224.33328247070312"></th><th width="111.55551147460938"></th><th width="111.4444580078125"></th><th width="109.88885498046875"></th><th width="188.11126708984375"></th></tr></thead><tbody><tr><td><strong>Record Types</strong></td><td><strong>Owner</strong></td><td><strong>Admin.</strong></td><td><strong>Editor</strong></td><td><strong>Viewer</strong></td></tr><tr><td><strong>ICT Network:</strong> Entities</td><td>Manage all</td><td>Manage all</td><td>Manage all</td><td>Read only</td></tr><tr><td><strong>ICT Network:</strong> Branches</td><td>Manage all</td><td>Manage all</td><td>Manage all</td><td>Read only</td></tr><tr><td><strong>ICT Network:</strong> Functions</td><td>Manage all</td><td>Manage all</td><td>Manage all</td><td>Read only</td></tr><tr><td><strong>ICT Network:</strong> Providers</td><td>Manage all</td><td>Manage all</td><td>Manage all</td><td>Read only</td></tr><tr><td><strong>ICT Network:</strong> ICT Assets</td><td>Manage all</td><td>Manage all</td><td>Manage all</td><td>Read only</td></tr><tr><td><strong>ICT Network:</strong> Contracts</td><td>Manage all</td><td>Manage all</td><td>Manage all</td><td>Read only</td></tr><tr><td><strong>Compliance</strong>: Policies &#x26; Controls</td><td>Manage all</td><td>Manage all</td><td>Manage all</td><td>Read only</td></tr><tr><td><strong>Compliance</strong>: Risks</td><td>Manage all</td><td>Manage all</td><td>Manage all</td><td>Read only</td></tr><tr><td><strong>Compliance</strong>: Incidents</td><td>Manage all</td><td>Manage all</td><td>Manage all</td><td>Read only</td></tr><tr><td><strong>Export</strong>: Register of Information</td><td>Manage all</td><td>Manage all</td><td>Manage all</td><td>Can only download previously generated reports</td></tr><tr><td><strong>Export</strong>: Network Data</td><td>Manage all</td><td>Manage all</td><td>Manage all</td><td>Read only</td></tr><tr><td><strong>Team:</strong> User Profiles</td><td>See below</td><td>See below</td><td>See below</td><td>See below</td></tr></tbody></table>

***

### Teams Page&#x20;

An overview of assigned Access types across your organization's workspace is viewable on the **Teams page**.&#x20;

#### Access Type Assignments & Permissions

The table below outlines permissions related to user accounts and profile information.&#x20;

**Summary:**

* **Owner:** Highest level of access. Full control over user profile information.
* **Administrator:** Can manage users and edit most profile information.
* **Editor:** Read-only access to other users’ details. Can update their own profile information.
* **Viewer:** Read-only access to other users’ details. Can update their own profile information.

**Legend:**&#x20;

* ✅: Has permission
* ❌: Does not have permission
* 🔒: Not applicable

<table data-header-hidden><thead><tr><th width="299.88885498046875"></th><th width="99.33331298828125"></th><th width="98.11114501953125"></th><th width="99.88885498046875"></th><th width="108.11114501953125"></th></tr></thead><tbody><tr><td><strong>Permission</strong></td><td><strong>Owner</strong></td><td><strong>Admin</strong></td><td><strong>Editor</strong></td><td><strong>Viewer</strong></td></tr><tr><td>Edit own name</td><td>✅</td><td>✅</td><td>✅</td><td>✅</td></tr><tr><td>Edit own email address*</td><td>🔒</td><td>🔒</td><td>🔒</td><td>🔒</td></tr><tr><td>Edit own phone number</td><td>✅</td><td>✅</td><td>✅</td><td>✅</td></tr><tr><td>Edit own job title</td><td>✅</td><td>✅</td><td>✅</td><td>✅</td></tr><tr><td>Change own access type</td><td>❌</td><td>❌</td><td>❌</td><td>❌</td></tr><tr><td>Edit another user’s name</td><td>❌</td><td>❌</td><td>❌</td><td>❌</td></tr><tr><td>Edit another user’s email address*</td><td>🔒</td><td>🔒</td><td>🔒</td><td>🔒</td></tr><tr><td>Edit another user’s phone number</td><td>✅</td><td>✅</td><td>❌</td><td>❌</td></tr><tr><td>Edit another user’s job title</td><td>✅</td><td>✅</td><td>❌</td><td>❌</td></tr><tr><td>Change another user’s access type</td><td>✅ **</td><td>✅</td><td>❌</td><td>❌</td></tr><tr><td>Invite users to the team (via email)</td><td>✅</td><td>✅</td><td>❌</td><td>❌</td></tr><tr><td>Resend invite</td><td>✅</td><td>✅</td><td>❌</td><td>❌</td></tr><tr><td>Remove users from the team</td><td>✅</td><td>✅</td><td>❌</td><td>❌</td></tr></tbody></table>

**Notes:**

\*Email Address cannot be changed after workspace creation or invitation.

\*\*Owner Access type is established upon DORAedge tenant creation and cannot currently be transferred to other users in the workspace.