User Roles
Understanding role-based access
User Roles
Prorganizer uses role-based access control with four system roles. Each role has specific permissions designed to support different team functions.
Available Roles
Owner
- Full access to all features and permissions
- Billing and subscription management
- Can delete company and transfer ownership
- MFA required
Administrator
- Full access to all features and permissions
- Team management (invite, remove, change roles)
- Company settings management
- Cannot delete company or manage billing
- MFA required
Accountant
- Full financial access (transactions, bills, invoices, reports)
- Compliance management and filing
- Payroll processing (but not approval)
- Document upload and management
- Can view settings (but not modify)
- Cannot approve transactions or payroll (maker-checker separation)
- No team management access
Viewer
- Read-only access to all modules
- View transactions, bills, invoices, and reports
- View compliance status and payroll information
- View documents and team members
- Cannot create, edit, delete, or approve any data
Role Comparison
| Permission | Owner | Admin | Accountant | Viewer |
|---|---|---|---|---|
| View & Reports | ||||
| View transactions | ✓ | ✓ | ✓ | ✓ |
| View bills & invoices | ✓ | ✓ | ✓ | ✓ |
| View reports | ✓ | ✓ | ✓ | ✓ |
| Export reports | ✓ | ✓ | ✓ | ✗ |
| View compliance status | ✓ | ✓ | ✓ | ✓ |
| View payroll | ✓ | ✓ | ✓ | ✓ |
| View documents | ✓ | ✓ | ✓ | ✓ |
| Create & Edit | ||||
| Create/edit transactions | ✓ | ✓ | ✓ | ✗ |
| Create/edit bills & invoices | ✓ | ✓ | ✓ | ✗ |
| Send invoices & reminders | ✓ | ✓ | ✓ | ✗ |
| Process payroll | ✓ | ✓ | ✓ | ✗ |
| Manage compliance | ✓ | ✓ | ✓ | ✗ |
| Upload documents | ✓ | ✓ | ✓ | ✗ |
| Approval | ||||
| Approve transactions | ✓ | ✓ | ✗ | ✗ |
| Approve payroll | ✓ | ✓ | ✗ | ✗ |
| Administration | ||||
| View team members | ✓ | ✓ | ✗ | ✓ |
| Invite team members | ✓ | ✓ | ✗ | ✗ |
| Manage team (roles, remove) | ✓ | ✓ | ✗ | ✗ |
| View settings | ✓ | ✓ | ✓ | ✓ |
| Manage settings | ✓ | ✓ | ✗ | ✗ |
| Billing & subscription | ✓ | ✗ | ✗ | ✗ |
| Delete company | ✓ | ✗ | ✗ | ✗ |
| Security | ||||
| MFA required | Yes | Yes | No | No |
Understanding Maker-Checker
Accountants can create and process financial data but cannot approve it. This separation (maker-checker) ensures:
- Fraud prevention: The person who creates a transaction cannot approve it
- Error reduction: A second pair of eyes reviews important financial actions
- Audit compliance: Clear separation of duties for regulatory requirements
Transactions and payroll created by Accountants require approval from an Owner or Administrator before being finalized.
Choosing the Right Role
| Role | Best for |
|---|---|
| Owner | Business founders, primary decision makers |
| Administrator | Office managers, senior staff who manage the team |
| Accountant | Bookkeepers, finance staff who handle day-to-day accounting |
| Viewer | Stakeholders, consultants, or auditors who need visibility |