Roles and Permissions
Roles define default capabilities while permissions add fine-grained control. Combine both to give teammates the access they require—nothing more, nothing less.
Default Roles
| Role | Description | Ideal For |
|---|---|---|
| Owner | Full control over workspace settings, billing, and data exports. | Workspace creators, agency principals, franchise owners |
| Admin | Manage members, social connections, and content publishing but cannot close the workspace. | Marketing leads, community managers |
| Member | Create and schedule posts, respond to reviews, and access analytics. | Content creators, support specialists |
Permission Matrix
Roles act as bundles of granular permissions. You can override defaults per member from Workspace Settings → Members.
| Permission Key | Grants Access To | Included In Roles |
|---|---|---|
workspace.manage | Rename workspace, update timezone, manage security | Owner |
billing.manage | Update payment method, view invoices, change plan | Owner |
members.manage | Invite, remove, and edit member roles | Owner, Admin |
posts.manage | Create, edit, schedule, and delete posts | Owner, Admin, Member |
posts.approve | Approve posts awaiting review | Owner, Admin |
media.manage | Upload, categorize, crop, and delete media assets | Owner, Admin, Member |
google_business.manage | Connect Google Business Profiles, respond to reviews | Owner, Admin |
meta.manage | Connect Meta/Facebook and Instagram accounts | Owner, Admin |
tiktok.manage | Connect TikTok business accounts | Owner, Admin |
analytics.view | Access analytics dashboards and exports | Owner, Admin, Member |
integrations.manage | Configure API keys, webhooks, and CRM integrations | Owner, Admin |
Customizing Access
- Navigate to Workspace Settings → Members.
- Click a member and choose Edit Permissions.
- Toggle individual permissions on/off to grant custom access.
- Save changes—updates apply immediately and are tracked in the audit log.
You can also create Permission Presets (e.g., "Client Reviewer", "Contract Copywriter") to apply reusable combinations quickly.
Approval Workflows
- Enable Content Approval so posts require sign-off before publishing.
- Assign approvers (Owner/Admin) who receive notifications when posts enter review.
- Approval status is visible on the Content Calendar and in the post composer.
Security Recommendations
- Use the Require MFA toggle for admins and owners.
- Review membership quarterly using the Activity Log to ensure ex-teammates no longer have access.
- Pair custom permissions with Saved Views to share analytics without granting publishing rights.
For more on inviting members, updating roles, and billing access, continue to Member Management & Billing.