Last updated: 2026-04-06
Guide
Role & Permission Management¶
Dxtra uses predefined roles rather than custom permissions. This approach ensures consistent security and simplifies compliance.
Available Roles¶
| Category | Roles |
|---|---|
| Leadership | Owner, Business Owner, Data Protection Officer, Data Controller |
| Operations | Admin, Agency/Reseller |
| Team | Developer, Member |
| External | Auditor/Regulator |
See Available Roles & Permissions for detailed permission information.
Assigning Roles¶
New Users¶
- Navigate to Settings > Users & Roles
- Click Invite User
- Enter email address
- Select role from dropdown
- Click Send Invitation
The user receives an email with setup instructions. After creating their account, they have access based on the assigned role.
Existing Users¶
- Go to Settings > Users & Roles
- Find the user in the list
- Click to edit
- Change role selection
- Save changes
Role changes take effect immediately.
Role Selection Guidelines¶
Start with Minimum Access¶
| User Type | Start With | Upgrade To |
|---|---|---|
| New team member | Member | Admin when needed |
| External consultant | Member | Agency/Reseller for multi-client |
| Technical staff | Developer | Admin if managing non-technical tasks |
| Auditor | Auditor/Regulator | Never (remove after audit) |
When to Change Roles¶
Change a role when:
- User responsibilities change significantly
- User needs features unavailable in their current role
- Security review identifies over-privileged access
- User transitions to different team function
Role Change Process¶
- Verify the user actually needs additional access
- Select role with minimum necessary permissions
- Update in user management interface
- Document reason for change
- Review usage after 30 days
Troubleshooting¶
User Cannot Access a Feature¶
- Check assigned role in Settings > Users & Roles
- Verify role includes required permission (see permission matrix)
- If legitimate need, upgrade to appropriate role
- Confirm account is active (not disabled)
User Has Excessive Access¶
- Review current role assignment
- Determine minimum required permissions
- Downgrade to appropriate role
- Communicate change to user
Invitation Not Received¶
- Check spam/junk folder
- Verify email address is correct
- Resend invitation from user management
- Invitations expire after 7 days
Best Practices¶
- Quarterly Reviews: Audit all user roles
- Document Changes: Record role assignment reasons
- Immediate Removal: Remove access when users leave
- Temporary Access: Use time-limited access for auditors and consultants