Skip to content
English
More support
Contact us
  • There are no suggestions because the search field is empty.

🛡️ Roles & Permissions Overview

This article explains the roles and permissions in ValueStreamer and how to assign them correctly. A structured role assignment is essential to control access rights effectively and clearly define responsibilities.

🔍 Content

  • How it works

  • System Roles

  • Team Roles

  • Tips & Best Practices

  • FAQ

🛠️ How it works

  1. Click the ⚙️ gear icon in the upper right to open system settings.

  2. In the left sidebar, select User Management.

  3. Find the desired user and open their profile.

  4. Under the Profile tab, you will find options such as:

    • ☑️ System Administrator (system-wide administrator rights)

    • ☑️ External (restricted access for third parties)

ℹ️ Info: The system role determines whether a user has access to global system functions. The "External" role is suitable for partners or service providers with limited permissions.

  1. Switch to the Memberships tab to assign a team role for each team:

    • 👤 Team Member

    • 🛠️ Team Administrator

    • 👀 Guest

🔄 A user can hold different roles in different teams.

✅ Save your changes by clicking Apply Changes.

⚠️ Warning: Changes to roles take immediate effect on system access rights.

🧩 System Roles

Role Description
🛡️ System Administrator Full access to all system functions, including user and team management – also to private teams
👤 User (Standard) Read access to public teams, editing only in assigned teams
🌐 External Access only to explicitly assigned teams, ideal for external partners or consultants
 

🔒 ℹ️ Info: Only system administrators can create, delete, or reset user accounts.

👥 Team Roles

Role Rights
🛠️ Team Administrator Full access to the team, including role management and views
👤 Team Member Read and write access in team views
👀 Guest Limited access – not visible in task board, process board & attendance; write permissions possible within team views
 

ℹ️ Info: System roles and team roles are independent and can be freely combined.

⚠️ Warning: External access should only be granted selectively and documented for data protection reasons.

ℹ️ Info: System administrators always have access to all content – even in private teams.

Tips & Best Practices
💡 Best Practice: Assign at least one team administrator per team to enable decentralized management.
⚠️ Warning: Avoid unnecessary assignment of system administrator rights – they apply globally and without restriction.
Tip: Use the external role specifically for external service providers or consultants – and document these authorizations transparently.

FAQ

Who can create or delete users?
→ Only users with the system role System Administrator.

What happens if a user is not assigned a role?
→ Every user is assigned to a home team.