How to Manage Permission Settings
Control access with role-based permissions to protect sensitive data.
Permission Guidelines by Role
| Role | Scenario | Recommended Access |
|---|---|---|
| New recruiter | Learning the platform | Recruiter on assigned openings |
| Experienced recruiter | Day-to-day pipeline management | Recruiter on their openings |
| Hiring manager | Designs interviews, manages team | Job Owner on their openings |
| HR admin | Billing, settings, org-wide control | Account Admin |
| External agency | Limited openings only | Recruiter on specific openings |
| Stakeholder / Observer | Needs visibility only | Viewer on relevant openings |
Organisation-Level vs Job-Level Access
Organisation-Level Roles
Apply to the entire platform:
| Role | Capabilities |
|---|---|
| Account Admin | Full access to all features, settings, and every opening |
| Member | Access only to openings they are explicitly assigned to |
Job-Level Roles
Assigned per opening to control what a member can do within that opening:
| Role | Capabilities |
|---|---|
| Job Owner | Full control — edit plans, manage team, configure settings |
| Recruiter | Pipeline management — invite candidates, view plans, export data |
| Viewer | Read-only — view candidates and results |
Setting Up Job-Level Access
Adding Team Members to an Opening
- Open the opening and go to the Team Members tab
- Click "Add Member"
- Search for the team member
- Select their role (Job Owner, Recruiter, or Viewer)
- Click "Add"
Changing a Role
- Open the opening's Team Members tab
- Find the team member
- Click on their current role
- Select the new role
Removing Access
- Open the opening's Team Members tab
- Find the team member
- Click "Remove"
- Confirm the action
When to Use Job-Level Restrictions
| Scenario | Use Restriction? | Why |
|---|---|---|
| Confidential executive search | Yes | Limit visibility to senior team |
| Department-specific hiring | Yes | Only relevant team needs access |
| General open positions | No | Broad team collaboration helpful |
| External agency involvement | Yes | Limit to specific assigned roles |
| Sensitive salary information | Yes | Protect compensation data |
Access Control Best Practices
Principle of Least Privilege
Key Principle
Give users only the minimum access they need to do their job. Start with Recruiter or Viewer and upgrade as needed.
Benefits:
- Reduces risk of accidental changes
- Protects sensitive candidate data
- Simplifies compliance audits
- Clear accountability for actions
Regular Access Reviews
| Frequency | Task |
|---|---|
| Monthly | Review active user list |
| Quarterly | Audit job-level permissions |
| On role change | Update permissions immediately |
| On departure | Remove access same day |
Audit Trail
We log all actions for compliance:
What's Tracked
- User login/logout times
- Candidate data access
- Interview plan modifications
- Status changes
- Email communications
- Export activities
Accessing Audit Logs
- Go to Settings (Account Admin only)
- Select Audit Log
- Filter by user, action, or date
- Export if needed
Compliance Considerations
GDPR (the European data privacy regulation)
- Candidates can request their data
- Data must be deletable on request
- Access must be logged
- Only necessary data should be collected
SOC 2 (a security certification standard)
- Role-based access control with granular permissions
- Audit logging enabled
- Regular access reviews
- Incident response procedures
Common Permission Scenarios
Scenario 1: External Recruiter
An external recruiting agency needs to help with hiring.
Setup:
- Add them as a Member at the organisation level
- Assign Recruiter role on specific openings only
- They can invite candidates and view results but cannot edit plans or manage team
- Review access monthly
Scenario 2: Hiring Manager
A department head needs to design and review interviews.
Setup:
- Add them as a Member at the organisation level
- Assign Job Owner role on their department's openings
- They get full control over their openings with no access to other departments
- Regular permission audits
Scenario 3: Interview Observer
A team member needs to watch interviews but not make decisions.
Setup:
- Add them as a Member at the organisation level
- Assign Viewer role on relevant openings
- They can view candidates and results but cannot take any actions
- Can view recordings and scores
FAQ
Can a Recruiter create jobs?
A Recruiter gains the ability to create new jobs once they are also a Job Owner on at least one opening.
Can I have multiple Account Admins?
Yes. You can have as many admins as needed, but we recommend limiting admin access to those who truly need it.
What happens when someone leaves the company?
Remove their access immediately via Organisation Users. Their actions remain in the audit log.
How do I check what permissions each role has?
Use the Role Guide button on the Organisation Users or Team Members page. It shows a visual comparison of all roles and permissions.