Roles & Permissions

There are 3 user roles for organization team members:

• Owner

• Admin

• Member

Owner

Each organization has one Owner, and this is the person who created the SupplyShark account. If they decide to later on, they can transfer ownership to another user.

✅ Owners can:

• Transfer ownership

• Delete the organization's account

• Manage the organization's subscription

• Do everything Admins and Members can do

Admin

Admins are intended to have permissions to manage and configure SupplyShark settings, and invite team members to your organization.

✅ Admins can:

• Invite other team members

• Assign team members the Admin role

• Modify organization settings

• Do anything Members can do

❌ Admins cannot:

• Transfer ownership

• Delete the organization

• Manage the organization's subscription

• Modify their own role

Member

Members are intended to just have permissions to manage the results inbox, which includes changing a vulnerability report to Resolved or Ignored.

✅ Members can:

• View organization settings

• Manage the results inbox

❌ Members cannot:

• Invite other team members

• Modify organization settings

• Do anything Admin users can't do