Why access control matters more with unlimited users
When every employee has access to the platform — not just managers and power users — access control becomes critical. A shop floor operator should see production orders but not salary data. A sales executive should create quotations but not approve purchase orders. A finance manager should close books but not modify HR records.
How role-based permissions work
The platform's permission model operates at four levels: role, document type, field, and record. Each level adds precision without adding complexity.
- Role permissions — define what each role can do: read, create, write, submit, cancel, amend, delete
- Document-level rules — restrict access based on field values (e.g. sales team can only see their own orders)
- Field-level permissions — hide or make read-only specific fields by role
- Workflow states — control who can transition documents between states (draft, approved, submitted)
Audit trail by default
Every action in the platform is logged: who created, modified, submitted, or cancelled every document. Version history tracks field-level changes with timestamps and user attribution. This is not an add-on. It is built into the framework. For regulated industries, this audit trail is not optional — it is a compliance requirement.
Unlimited users is only valuable when matched with precise access control. Give everyone access. Control what they can do.