Roles and Permissions

Scorecard.biz uses role-based access control to manage what users can do.

Organization Roles

Viewer

• View scorecards and metrics they have access to
• See dashboards and reports
• Cannot enter or modify data

Contributor

• Everything Viewers can do
• Enter data for assigned metrics
• Request corrections

Owner

• Everything Contributors can do
• Create and edit scorecards
• Manage metric configuration
• Approve corrections
• Grant access to others

Domain Admin

• Everything Owners can do
• Manage organization settings
• Invite and manage users
• Configure integrations
• View audit logs

Platform Admin

• Full system access
• Manage multiple organizations
• System configuration

Scorecard-Level Access

Beyond organization roles, access can be granted per scorecard:

• View: See the scorecard
• Edit: Modify metrics and sections
• Admin: Full control including access management

Metric-Level Access

For sensitive metrics:

• Override scorecard access
• Restrict who can view specific metrics
• Common for salary, confidential data

Best Practices

• Follow principle of least privilege
• Review access regularly
• Use groups for easier management
• Document access decisions